CVE-2002-2219
published 2002-12-31CVE-2002-2219: chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field.
PriorityP431high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
6.04%
92.5th percentile
chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chetcpasswd | chetcpasswd | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://securitytracker.com/id?1005847http://sourceforge.net/project/shownotes.php?group_id=68912&release_id=466649http://www.securiteam.com/unixfocus/6C00N0K6AO.htmlhttp://www.securityfocus.com/bid/6472https://exchange.xforce.ibmcloud.com/vulnerabilities/10946http://securitytracker.com/id?1005847http://sourceforge.net/project/shownotes.php?group_id=68912&release_id=466649http://www.securiteam.com/unixfocus/6C00N0K6AO.htmlhttp://www.securityfocus.com/bid/6472https://exchange.xforce.ibmcloud.com/vulnerabilities/10946
2002-12-31
Published