CVE-2002-0347

Currently unrated

Key Information:

Vendor
Oracle
Status
Cobalt Raq 3i
Cobalt Raq 2
Cobalt Raq 4
Vendor
CVE Published:
25 June 2002

Badges

👾 Exploit Exists🟡 Public PoC

Summary

Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. (dot dot) in an HTTP request.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2002-0347
Created by alt3kx

References

http://marc.info/?l=bugtraq&m=101495944202452&w=2
mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/bid/4208
vdb-entryx_refsource_BID
http://www.iss.net/security_center/static/8322.php
vdb-entryx_refsource_XF

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.