← back
CVE-2002-1211

CVE-2002-1211

EPSS 2.8%
Prometheus 6.0 and earlier allows remote attackers to execute arbitrary PHP code via a modified PROMETHEUS_LIBRARY_BASE that points to code stored on a remote server, which is then used in (1) index.php, (2) install.php, or (3) various test_*.php scripts.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/21976unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0050.htmlhttp://marc.info/?l=bugtraq&m=103616306403031&w=2http://www.idefense.com/advisory/10.31.02b.txthttp://www.iss.net/security_center/static/10515.phphttp://www.securityfocus.com/bid/6087