What is the severity of CVE-2002-0236?

CVE-2002-0236 is classified as a high severity vulnerability due to the potential for remote attackers to bypass authentication.

How do I fix CVE-2002-0236?

To fix CVE-2002-0236, ensure that you apply the latest patches provided by Lucent for all affected versions of the VitalSuite software.

Which versions of Lucent software are affected by CVE-2002-0236?

CVE-2002-0236 affects Lucent VitalSuite versions 8.0 to 8.2, including VitalNet, VitalEvent, and VitalHelp/VitalAnalysis.

Can CVE-2002-0236 be exploited without authentication?

Yes, CVE-2002-0236 can be exploited without authentication through a direct HTTP request.

What components of Lucent software are impacted by CVE-2002-0236?

CVE-2002-0236 impacts multiple components such as VitalNet, VitalEvent, and VitalHelp/VitalAnalysis within the Lucent VitalSuite.

Vulnerability/
CVE-2002-0236

high

7.5

CWE

NVD-CWE-Other

3/5/2002

8/8/2024

CVE-2002-0236

First published: Fri May 03 2002(Updated: )

Lucent VitalSuite 8.0 through 8.2, including VitalNet, VitalEvent, and VitalHelp/VitalAnalysis, allows remote attackers to bypass authentication via a direct HTTP request to the VsSetCookie.exe program, which returns a valid cookie for the desired user.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Lucent Vitalevent	=8.0
Lucent VitalSuite	=8.0
Lucent VitalSuite	=8.2
Lucent Vitalnet	=8.0
Lucent VitalSuite	=8.1
Lucent Vitalanalysis	=8.0
Lucent Vitalhelp	=8.2
Lucent Vitalanalysis	=8.2
Lucent Vitalnet	=8.1
Lucent Vitalhelp	=8.0
Lucent Vitalevent	=8.2
Lucent Vitalhelp	=8.1
Lucent Vitalanalysis	=8.1
Lucent Vitalnet	=8.2
Lucent Vitalevent	=8.1

Remedy

http://www.iss.net/security_center/static/7936.php

Remedy

http://www.securityfocus.com/bid/3784

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2002-0236?
CVE-2002-0236 is classified as a high severity vulnerability due to the potential for remote attackers to bypass authentication.
How do I fix CVE-2002-0236?
To fix CVE-2002-0236, ensure that you apply the latest patches provided by Lucent for all affected versions of the VitalSuite software.
Which versions of Lucent software are affected by CVE-2002-0236?
CVE-2002-0236 affects Lucent VitalSuite versions 8.0 to 8.2, including VitalNet, VitalEvent, and VitalHelp/VitalAnalysis.
Can CVE-2002-0236 be exploited without authentication?
Yes, CVE-2002-0236 can be exploited without authentication through a direct HTTP request.
What components of Lucent software are impacted by CVE-2002-0236?
CVE-2002-0236 impacts multiple components such as VitalNet, VitalEvent, and VitalHelp/VitalAnalysis within the Lucent VitalSuite.

collector/nvd-historical
collector/nvd-index
agent/type
agent/softwarecombine
agent/remedy
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/severity
agent/references
agent/last-modified-date
agent/tags
agent/first-publish-date
agent/event
agent/description
agent/source
vendor/lucent
canonical/lucent vitalevent
version/lucent vitalevent/8.0
canonical/lucent vitalsuite
version/lucent vitalsuite/8.0
version/lucent vitalsuite/8.2
canonical/lucent vitalnet
version/lucent vitalnet/8.0
version/lucent vitalsuite/8.1
canonical/lucent vitalanalysis
version/lucent vitalanalysis/8.0
canonical/lucent vitalhelp
version/lucent vitalhelp/8.2
version/lucent vitalanalysis/8.2
version/lucent vitalnet/8.1
version/lucent vitalhelp/8.0
version/lucent vitalevent/8.2
version/lucent vitalhelp/8.1
version/lucent vitalanalysis/8.1
version/lucent vitalnet/8.2
version/lucent vitalevent/8.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2002-0236?
CVE-2002-0236 is classified as a high severity vulnerability due to the potential for remote attackers to bypass authentication.
How do I fix CVE-2002-0236?
To fix CVE-2002-0236, ensure that you apply the latest patches provided by Lucent for all affected versions of the VitalSuite software.
Which versions of Lucent software are affected by CVE-2002-0236?
CVE-2002-0236 affects Lucent VitalSuite versions 8.0 to 8.2, including VitalNet, VitalEvent, and VitalHelp/VitalAnalysis.
Can CVE-2002-0236 be exploited without authentication?
Yes, CVE-2002-0236 can be exploited without authentication through a direct HTTP request.
What components of Lucent software are impacted by CVE-2002-0236?
CVE-2002-0236 impacts multiple components such as VitalNet, VitalEvent, and VitalHelp/VitalAnalysis within the Lucent VitalSuite.