Risk Scores
CVSS v2.0
5
EPSS Score
12.49%
93.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| php | php | 4.2.2, 3.0.18, 4.0 |
| n/a | n/a | n/a |
Timeline
- Sep 24, 2002 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 28, 2022 EPSS Score
- Jul 10, 2022 EPSS Score
- Sep 1, 2022 EPSS Score
- Dec 14, 2022 EPSS Score
- Feb 4, 2023 EPSS Score
- Mar 28, 2023 EPSS Score
- May 19, 2023 EPSS Score
- Aug 31, 2023 EPSS Score
- Oct 22, 2023 EPSS Score
- Feb 3, 2024 EPSS Score
References
- 20030707 [OpenPKG-SA-2003.032] OpenPKG Security Advisory (php) mailing-list
- DSA-168 vendor-advisory
- VU#410609 third-party-advisory
- 20020823 PHP: Bypass safe_mode and inject ASCII control chars with mail() mailing-list
- RHSA-2002:243 vendor-advisory
- 2160 vdb
- RHSA-2003:159 vendor-advisory
- MDKSA-2003:082 vendor-advisory
- 5562 vdb
- CSSA-2003-008.0 vendor-advisory
- php-mail-ascii-injection(9959) vdb
- SuSE-SA:2002:036 vendor-advisory
- CLA-2002:545 vendor-advisory
- RHSA-2002:213 vendor-advisory
- RHSA-2002:248 vendor-advisory
- RHSA-2002:244 vendor-advisory
- RHSA-2002:214 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2002-0986 advisory