CVE-2002-2425

Description

Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request.

Affected products

• sun / solaris_answerbook21.2 – 1.2
• sun / solaris_answerbook21.3 – 1.3
• sun / solaris_answerbook21.4 – 1.4
• sun / solaris_answerbook21.4.1 – 1.4.1
• sun / solaris_answerbook21.4.2 – 1.4.2

References

• MISChttp://www.securityfocus.com/bid/5383
• MISChttp://archives.neohapsis.com/archives/bugtraq/2002-07/0486.html
• MISChttp://www.iss.net/security_center/static/9756.php