SUN » Cobalt Raq 3i : Security Vulnerabilities, CVEs, Published In 2002

CVE-2002-0430

MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.
Max CVSS
3.7
EPSS Score
0.04%
Published
2002-08-12
Updated
2008-09-10

CVE-2002-0348

service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long service argument.
Max CVSS
7.5
EPSS Score
1.55%
Published
2002-06-25
Updated
2016-10-18

CVE-2002-0347

Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. (dot dot) in an HTTP request.
Max CVSS
5.0
EPSS Score
0.64%
Published
2002-06-25
Updated
2016-10-18

CVE-2002-0346

Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi.
Max CVSS
7.5
EPSS Score
4.09%
Published
2002-06-25
Updated
2016-10-18
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close