PT-2002-1425 · Sun · Sun Answerbook2

Published

2002-05-21

Updated

2016-10-18

CVE-2002-0360

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Sun AnswerBook2 versions 1.4 through 1.4.3

Description The issue allows remote attackers to execute arbitrary code via a long filename argument to the "gettransbitmap" CGI program, which is a buffer overflow.

Recommendations For Sun AnswerBook2 versions 1.4 through 1.4.3, consider disabling the gettransbitmap CGI program until a patch is available to prevent exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0360

Affected Products

Sun Answerbook2

PT-2002-1425 · Sun · Sun Answerbook2

CVE-2002-0360

Related Identifiers

Affected Products

References · 6