Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.6
CVSSv2

CVE-2002-1233

Published: 04/11/2002 Updated: 18/10/2016
CVSS v2 Base Score: 2.6 | Impact Score: 4.9 | Exploitability Score: 1.9
VMScore: 231
Vector: AV:L/AC:H/Au:N/C:P/I:P/A:N
Subscribe to Http Server

Vulnerability Summary

A regression error in the Debian distributions of the apache-ssl package (prior to 1.3.9 on Debian 2.2, and prior to 1.3.26 on Debian 3.0), for Apache 1.3.27 and previous versions, allows local users to read or modify the Apache password file via a symlink attack on temporary files when the administrator runs (1) htpasswd or (2) htdigest, a re-introduction of a vulnerability that was originally identified and addressed by CVE-2001-0131.

Vulnerable Product Search on Vulmon Subscribe to Product

apache http server 1.3.20

apache http server 1.3.25

apache http server 1.3.19

apache http server 1.3.24

apache http server 1.3.17

apache http server 1.3.22

apache http server 1.3.26

apache http server 1.3.18

apache http server 1.3.23

apache http server 1.3.27

Vendor Advisories

Debian Security Advisories: DSA-195-1 apache-perl -- several vulnerabilities
According to David Wagner, iDEFENSE and the Apache HTTP Server Project, several vulnerabilities have been found in the Apache server package, a commonly used webserver Most of the code is shared between the Apache and Apache-Perl packages, so vulnerabilities are shared as well These vulnerabilities could allow an attacker to enact a denial of ser ...
Debian Security Advisories: DSA-188-1 apache-ssl -- several vulnerabilities
According to David Wagner, iDEFENSE and the Apache HTTP Server Project, several vulnerabilities have been found in the Apache package, a commonly used webserver Most of the code is shared between the Apache and Apache-SSL packages, so vulnerabilities are shared as well These vulnerabilities could allow an attacker to enact a denial of service aga ...

References

NVD-CWE-Otherhttp://www.iss.net/security_center/static/10413.phphttp://www.debian.org/security/2002/dsa-187http://www.debian.org/security/2002/dsa-188http://www.debian.org/security/2002/dsa-195http://www.securityfocus.com/bid/5981http://www.securityfocus.com/bid/5990http://www.iss.net/security_center/static/10412.phphttp://marc.info/?l=bugtraq&m=103480856102007&w=2https://nvd.nist.govhttps://www.debian.org/security/./dsa-195
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook