[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

110204

 
 

909

 
 

85984

 
 

136

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML view JSON

CVE-2002-0070Date: (C)2002-03-15   (M)2018-05-03


Buffer overflow in Windows Shell (used as the Windows Desktop) allows local and possibly remote attackers to execute arbitrary code via a custom URL handler that has not been removed for an application that has been improperly uninstalled.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : CVSS Score : 7.6
Exploit Score: Exploit Score: 4.9
Impact Score: Impact Score: 10.0
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: Access Vector: NETWORK
Attack Complexity: Access Complexity: HIGH
Privileges Required: Authentication: NONE
User Interaction: Confidentiality: COMPLETE
Scope: Integrity: COMPLETE
Confidentiality: Availability: COMPLETE
Integrity:  
Availability:  
  
Reference:
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0203&L=ntbugtraq&F=P&S=&P=2404
http://marc.info/?l=bugtraq&m=101594127017290&w=2
BID-4248
MS02-014
win-shell-bo(8384)

CPE    4
cpe:/o:microsoft:windows_98::gold
cpe:/o:microsoft:windows_98se
cpe:/o:microsoft:windows_nt:4.0
cpe:/o:microsoft:windows_2000
...
CWE    1
CWE-119
OVAL    2
oval:org.mitre.oval:def:18
oval:org.mitre.oval:def:147

© SecPod Technologies