Vulnerability Details : CVE-2002-1281
Unknown vulnerability in the rlogin KIO subsystem (rlogin.protocol) of KDE 2.x 2.1 and later, and KDE 3.x 3.0.4 and earlier, allows local and remote attackers to execute arbitrary code via a certain URL.
Vulnerability category: Execute code
Products affected by CVE-2002-1281
- cpe:2.3:o:kde:kde:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:2.2:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:2.1:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:o:kde:kde:2.1.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2002-1281
12.41%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 95 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2002-1281
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2002-1281
-
http://marc.info/?l=bugtraq&m=103728981029342&w=2
-
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-079.php
-
http://marc.info/?l=bugtraq&m=103712550205730&w=2
-
http://www.iss.net/security_center/static/10602.php
Vendor Advisory
-
http://www.debian.org/security/2002/dsa-204
-
http://www.kde.org/info/security/advisory-20021111-1.txt
Patch;Vendor Advisory
-
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-012.0.txt
-
http://www.securityfocus.com/bid/6182
Patch;Vendor Advisory
-
http://www.redhat.com/support/errata/RHSA-2002-220.html
SupportPatch;Vendor Advisory
Jump to