Vulnerability Details : CVE-2002-0801
Buffer overflow in the ISAPI DLL filter for Macromedia JRun 3.1 allows remote attackers to execute arbitrary code via a direct request to the filter with a long HTTP host header field in a URL for a .jsp file.
Vulnerability category: OverflowExecute code
Exploit prediction scoring system (EPSS) score for CVE-2002-0801
Probability of exploitation activity in the next 30 days: 17.40%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 96 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2002-0801
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2002-0801
-
http://online.securityfocus.com/archive/1/274601
-
http://www.iss.net/security_center/static/9194.php
Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/4873
Patch;Vendor Advisory
-
http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0085.html
-
http://www.kb.cert.org/vuls/id/703835
Patch;Third Party Advisory;US Government Resource
-
http://www.cert.org/advisories/CA-2002-14.html
US Government Resource
-
http://online.securityfocus.com/archive/1/274528
Products affected by CVE-2002-0801
- cpe:2.3:a:macromedia:jrun:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:macromedia:jrun:3.1:*:*:*:*:*:*:*