CVE DATABASE / CVE-2002-1825
CVE-2002-1825
CVSS 6.4 · MEDIUM
Summary
Format string vulnerability in PerlRTE_example1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable.
CVSS 2.0 breakdown
| Base score | 6.4 (MEDIUM) |
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:P |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Confidentiality | NONE |
| Integrity | PARTIAL |
| Availability | PARTIAL |
Affected products
Wasd wasd http server
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://wasd.vsm.com.au/ht_root/doc/misc/wasd_advisory_020925.txt
- http://www.iss.net/security_center/static/10213.php
- http://www.osvdb.org/21288
- http://www.securityfocus.com/archive/1/293229
- http://www.securityfocus.com/bid/5811
- http://www.teaser.fr/~jlgailly/security/wasd-vuln-2002-09.txt
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.