CVE-2002-0095
BSCW 3.x - Unauthenticated User Registration and File Upload
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-0095. PoCs published by Thomas Seliger.
AI-analyzed exploit summary This is a writeup describing a vulnerability in BSCW (Basic Support for Cooperative Work) where the default installation allows users to self-register, potentially enabling exploitation of other vulnerabilities such as remote command execution (BugTraq ID 3776). The provided URL is an example endpoint that could be targeted.
Description
The default configuration of BSCW (Basic Support for Cooperative Work) 3.x and possibly version 4 enables user self registration, which could allow remote attackers to upload files and possibly join a user community that was intended to be closed.
Exploits (1)
This is a writeup describing a vulnerability in BSCW (Basic Support for Cooperative Work) where the default installation allows users to self-register, potentially enabling exploitation of other vulnerabilities such as remote command execution (BugTraq ID 3776). The provided URL is an example endpoint that could be targeted.