Vulnerabilities > CVE-2002-0919 - Unspecified vulnerability in Cgiscript.Net Cspassword 1.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
cgiscript-net
exploit available

Summary

CGIScript.net csPassword.cgi allows remote authenticated users to modify the .htaccess file and gain privileges via newlines in the title field of the edit page.

Vulnerable Configurations

Part Description Count
Application
Cgiscript.Net
1

Exploit-Db

  • descriptionCGIScript.net csPassword.CGI 1.0 Information Disclosure Vulnerability. CVE-2002-0918,CVE-2002-0919. Webapps exploit for cgi platform
    idEDB-ID:21494
    last seen2016-02-02
    modified2002-05-30
    published2002-05-30
    reporterSteve Gustin
    sourcehttps://www.exploit-db.com/download/21494/
    titleCGIScript.net csPassword.CGI 1.0 Information Disclosure Vulnerability
  • descriptionCGIScript.net csPassword.CGI 1.0 HTAccess File Modification Vulnerability. CVE-2002-0919. Webapps exploit for cgi platform
    idEDB-ID:21495
    last seen2016-02-02
    modified2002-05-30
    published2002-05-30
    reporterSteve Gustin
    sourcehttps://www.exploit-db.com/download/21495/
    titleCGIScript.net csPassword.CGI 1.0 HTAccess File Modification Vulnerability