Remote Code Execution Vulnerability in Sun Cobalt RaQ 4
CVE-2002-1361

Currently unrated

Key Information:

Vendor

Oracle
Status
Cobalt Raq 4
Vendor
CVE Published:
23 December 2002

What is CVE-2002-1361?

The overflow.cgi CGI script in Sun Cobalt RaQ 4, when the Security Hardening Patch (SHP) is installed, is susceptible to exploitation by remote attackers. This vulnerability allows the execution of arbitrary code through specially crafted POST requests containing shell metacharacters within the email parameter. Successful exploitation could lead to unauthorized access and control over the affected system, posing significant risks to information security.

References

http://www.ciac.org/ciac/bulletins/n-025.shtml
third-party-advisorygovernment-resourcex_refsource_CIAC
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/4...
vendor-advisoryx_refsource_SUNALERT
https://exchange.xforce.ibmcloud.com/vulnerabilities/10776
vdb-entryx_refsource_XF

EPSS Score

20% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.