CVE-2002-0202

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
16/05/2002
Last modified:
03/04/2025

Description

PaintBBS 1.2 installs certain files and directories with insecure permissions, which allows local users to (1) obtain the encrypted server password via the world-readable oekakibbs.conf file, or (2) modify the server configuration via the world-writeable /oekaki/ folder.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:paintbbs:paintbbs:1.2:*:*:*:*:*:*:*