Vulnerability Details : CVE-2002-0598
Format string vulnerability in Foundstone FScan 1.12 with banner grabbing enabled allows remote attackers to execute arbitrary code on the scanning system via format string specifiers in the server banner.
Vulnerability category: Execute code
Exploit prediction scoring system (EPSS) score for CVE-2002-0598
Probability of exploitation activity in the next 30 days: 1.79%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 88 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2002-0598
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2002-0598
-
http://www.securityfocus.com/bid/4549
Patch;Vendor Advisory
-
http://www.iss.net/security_center/static/8895.php
Patch;Vendor Advisory
-
http://www.foundstone.com/knowledge/fscan112_advisory.html
Patch;Vendor Advisory
-
http://online.securityfocus.com/archive/1/268581
Vendor Advisory
Products affected by CVE-2002-0598
- cpe:2.3:a:foundstone:fscan:1.12:*:*:*:*:*:*:*