Description
Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by ghandi · textremotesolaris
https://www.exploit-db.com/exploits/21677
References (3)
Core 3
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/5383
Exploit mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0486.html
Patch vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9756.php
Scores
EPSS
0.0454
EPSS Percentile
89.2%
Details
CWE
CWE-264
Status
published
Products (5)
sun/solaris_answerbook2
1.2
sun/solaris_answerbook2
1.3
sun/solaris_answerbook2
1.4
sun/solaris_answerbook2
1.4.1
sun/solaris_answerbook2
1.4.2
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026