CVE-2002-1869
LOWHeysoft EventSave and EventSave+ 5.1-5.2 - Denial of Service via Log File Locking
Title source: llmDescription
Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log file using an application such as Microsoft's Event Viewer.
References (4)
Core 4
Core References
Broken Link, Patch, Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/6095
Broken Link, Patch x_refsource_confirm
http://www.heysoft.de/nt/eventlog/hsb01e.htm
Broken Link, Patch vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/10535.php
Broken Link, Patch, Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1005517
Scores
CVSS v3
3.3
EPSS
0.0032
EPSS Percentile
23.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Details
CWE
CWE-667
Status
published
Products (4)
heysoft/eventsave
5.1
heysoft/eventsave
5.2
heysoft/eventsave\+
5.1
heysoft/eventsave\+
5.2
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026