PT-2002-1181 · Orbis · Bscw

Published

2002-03-25

Updated

2008-09-05

CVE-2002-0095

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions BSCW versions 3.x

Description The default configuration of BSCW enables user self-registration, which could allow remote attackers to upload files and possibly join a user community that was intended to be closed.

Recommendations For BSCW versions 3.x, consider disabling the user self-registration feature to prevent unauthorized access and file uploads.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0095

Affected Products

Bscw

PT-2002-1181 · Orbis · Bscw

CVE-2002-0095

Related Identifiers

Affected Products

References · 5