Remote Code Execution Vulnerability in Sun Cobalt RaQ 4
CVE-2002-1361

Currently unrated

Key Information:

Vendor: Oracle
Status: Cobalt Raq 4
Vendor: CVE Published:; 23 December 2002

Summary

The overflow.cgi CGI script in Sun Cobalt RaQ 4, when the Security Hardening Patch (SHP) is installed, is susceptible to exploitation by remote attackers. This vulnerability allows the execution of arbitrary code through specially crafted POST requests containing shell metacharacters within the email parameter. Successful exploitation could lead to unauthorized access and control over the affected system, posing significant risks to information security.

References

http://www.ciac.org/ciac/bulletins/n-025.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/4...

vendor-advisoryx_refsource_SUNALERT

https://exchange.xforce.ibmcloud.com/vulnerabilities/10776

vdb-entryx_refsource_XF

EPSS Score

20% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 23, 2002
Vulnerability Reserved
Dec 14, 2002