Vulnerabilities > CVE-2002-0926 - Unspecified vulnerability in Wolfram Research Webmathematica 4.0Amateur/4.0Professional
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN wolfram-research
exploit available
Summary
Directory traversal vulnerability in Wolfram Research webMathematica 1.0.0 and 1.0.0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the MSPStoreID parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | Wolfram Research webMathematica 4.0 File Disclosure Vulnerability. CVE-2002-0926. Webapps exploit for java platform |
| id | EDB-ID:21562 |
| last seen | 2016-02-02 |
| modified | 2002-06-17 |
| published | 2002-06-17 |
| reporter | Andrew Badr |
| source | https://www.exploit-db.com/download/21562/ |
| title | Wolfram Research webMathematica 4.0 File Disclosure Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0174.html
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0174.html
- http://support.wolfram.com/webmathematica/security/fileaccess.html
- http://support.wolfram.com/webmathematica/security/fileaccess.html
- http://www.iss.net/security_center/static/9373.php
- http://www.iss.net/security_center/static/9373.php
- http://www.kb.cert.org/vuls/id/664323
- http://www.kb.cert.org/vuls/id/664323
- http://www.securityfocus.com/bid/5035
- http://www.securityfocus.com/bid/5035