1. CVE-Search
  2. CVE-2002-1159
ID CVE-2002-1159
Summary Canna 3.6 and earlier does not properly validate requests, which allows remote attackers to cause a denial of service or information leak.
References
Vulnerable Configurations
  • cpe:2.3:a:canna:canna:3.5b2:*:*:*:*:*:*:*
    cpe:2.3:a:canna:canna:3.5b2:*:*:*:*:*:*:*
  • cpe:2.3:a:canna:canna:3.6:*:*:*:*:*:*:*
    cpe:2.3:a:canna:canna:3.6:*:*:*:*:*:*:*
CVSS
Base: 6.4 (as of 03-05-2018 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:P
redhat via4
advisories
  • rhsa
    id RHSA-2002:246
  • rhsa
    id RHSA-2002:261
  • rhsa
    id RHSA-2003:115
refmap via4
bid 6354
confirm http://canna.sourceforge.jp/sec/Canna-2002-01.txt
debian DSA-224
sco CSSA-2003-005.0
xf canna-improper-request-validation(10832)
Last major update 03-05-2018 - 01:29
Published 18-12-2002 - 05:00
Last modified 03-05-2018 - 01:29
Back to Top