Vulnerabilities > CVE-2002-1038 - Unspecified vulnerability in Michael Dean Double Choco Latte 20020120/20020215
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Double Choco Latte (DCL) before 20020706 does not properly verify if a file was uploaded, which allows remote attackers to conduct certain operations on arbitrary files via the (1) Projects: Upload File Attachment or (2) Work Orders: Import features.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0022.html
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0022.html
- http://dcl.sourceforge.net/index.php
- http://dcl.sourceforge.net/index.php
- http://marc.info/?l=bugtraq&m=102668783632589&w=2
- http://marc.info/?l=bugtraq&m=102668783632589&w=2
- http://www.iss.net/security_center/static/9742.php
- http://www.iss.net/security_center/static/9742.php