CVE-2002-0107

Web administration interface in CacheFlow CacheOS 4.0.13 and earlier allows remote attackers to obtain sensitive information via a series of GET requests that do not end in with HTTP/1.0 or another version string, which causes the information to be leaked in the error message.

Published: Mar 25, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0107
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cacheflow / cacheos	3.1.13	3.1.13.x
cacheflow / cacheos	3.1.10	3.1.10.x
cacheflow / cacheos	4.0.11	4.0.11.x
cacheflow / cacheos	3.1.20	3.1.20.x
cacheflow / cacheos	3.1.08	3.1.08.x
cacheflow / cacheos	4.0.13	4.0.13.x
cacheflow / cacheos	3.1.11	3.1.11.x
cacheflow / cacheos	3.1.07	3.1.07.x
cacheflow / cacheos	4.0.12	4.0.12.x
cacheflow / cacheos	3.1.12	3.1.12.x
cacheflow / cacheos	3.1.17	3.1.17.x
cacheflow / cacheos	3.1.04	3.1.04.x
cacheflow / cacheos	3.1.18	3.1.18.x
cacheflow / cacheos	3.1.15	3.1.15.x
cacheflow / cacheos	3.1.19	3.1.19.x
cacheflow / cacheos	3.1.05	3.1.05.x
cacheflow / cacheos	3.1.02	3.1.02.x
cacheflow / cacheos	3.1.09	3.1.09.x
cacheflow / cacheos	3.1.14	3.1.14.x
cacheflow / cacheos	3.1.06	3.1.06.x
cacheflow / cacheos	3.1.03	3.1.03.x
cacheflow / cacheos	3.1.16	3.1.16.x
cacheflow / cacheos	0.0	0.0.x

Vulnerability Database

CVE-2002-0107