CVE-2002-1836
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The default configuration of Xerox DocuTech 6110 and DocuTech 6115 exports certain NFS shares to the world with world writable permissions, which may allow remote attackers to modify sensitive files.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2002-12-31 CVE Published
- 2005-06-28 CVE Reserved
- 2024-09-16 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://online.securityfocus.com/archive/1/273029 | Mailing List | |
| http://online.securityfocus.com/archive/1/273089 | Mailing List | |
| http://totally.righteous.net/jedgar/overview_of_security.pdf | X_refsource_confirm | |
| http://www.iss.net/security_center/static/9108.php | Vdb Entry | |
| http://www.securityfocus.com/bid/4765 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Xerox Search vendor "Xerox" | Docutech 6110 Search vendor "Xerox" for product "Docutech 6110" | * | - |
Affected
| ||||||
| Xerox Search vendor "Xerox" | Docutech 6115 Search vendor "Xerox" for product "Docutech 6115" | * | - |
Affected
| ||||||