Home  >  CVE-2002-1627
CVE Details for CVE: CVE-2002-1627
Summary
Directory traversal vulnerability in quiz.cgi for Mike Spice Quiz Me! before 0.6 allows remote attackers to write arbitrary files via .. (dot dot) sequences in the quiz parameter.
Timestamps
Last major update 11-07-2017 - 01:29
Published 31-12-2002 - 05:00
Last modified 11-07-2017 - 01:29
References
Vulnerable Configurations
  • cpe:2.3:a:mike_spice:quiz_me:0.5:*:*:*:*:*:*:*
    cpe:2.3:a:mike_spice:quiz_me:0.5:*:*:*:*:*:*:*
CAPEC
Click the CAPEC title to display a description
CWE
NVD-CWE-Other
CVSS
Base
5.0
Impact
2.9
Exploitability
10.0
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
CVSS3
None
VIA4 references
cvss-vector via4
AV:N/AC:L/Au:N/C:N/I:P/A:N
refmap via4
bid 3857
cert-vn VU#318835
sectrack 1003254
xf quizme-gain-privileges(7970)