CVE-2002-0299

CNet CatchUp before 1.3.1 allows attackers to execute arbitrary code via a .RVP file that creates a file with an arbitrary extension (such…

mitre·NVD-CWE-Other·Published 2002-05-31

CVSS

—

EPSS

0.02

KEV

Exploits

cve.orgen

181 chars

CNet CatchUp before 1.3.1 allows attackers to execute arbitrary code via a .RVP file that creates a file with an arbitrary extension (such as .BAT), which is executed during a scan.

NVDen

181 chars

CNet CatchUp before 1.3.1 allows attackers to execute arbitrary code via a .RVP file that creates a file with an arbitrary extension (such as .BAT), which is executed during a scan.

NVDes

208 chars

CNetCatchUp anteriores a 1.3.1 permite a atacantes remotos ejecutar código arbitrario mediante un fichero .RPV que crea un fichero con una extensión arbitraria (como .BAT) que es ejecutado durante un escaneo.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.6	4.9	10.0	AV:N/AC:H/Au:N/C:C/I:C/A:C