VYPR
← All advisories
Unrated severityNVD Advisory· Published Mar 25, 2002· Updated Apr 16, 2026

CVE-2002-0107

CVE-2002-0107

Description

Web administration interface in CacheFlow CacheOS 4.0.13 and earlier allows remote attackers to obtain sensitive information via a series of GET requests that do not end in with HTTP/1.0 or another version string, which causes the information to be leaked in the error message.

Affected products

23
  • Cacheflow/Cacheos23 versions
    cpe:2.3:a:cacheflow:cacheos:0.0:*:*:*:*:*:*:*+ 22 more
    • cpe:2.3:a:cacheflow:cacheos:0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.02:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.03:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.04:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.05:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.06:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.07:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.08:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.09:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.10:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.11:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.12:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.13:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.14:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.15:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.16:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.17:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.18:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.19:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:3.1.20:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:4.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:4.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:cacheflow:cacheos:4.0.13:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.