CVE DATABASE / CVE-2002-0066
CVE-2002-0066
CVSS 7.5 · HIGH
Summary
Funk Software Proxy Host 3.x before 3.09A creates a Named Pipe that does not require authentication and is installed with insecure access control, which allows local and possibly remote users to use the Proxy Host's configuration utilities and gain privileges.
CVSS 2.0 breakdown
| Base score | 7.5 (HIGH) |
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Confidentiality | PARTIAL |
| Integrity | PARTIAL |
| Availability | PARTIAL |
Affected products
Bindview netrcFunk_software funk software proxy
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://razor.bindview.com/publish/advisories/adv_FunkProxy.html
- http://www.iss.net/security_center/static/8793.php
- http://www.securityfocus.com/bid/4460
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.