VYPR
Unrated severityNVD Advisory· Published May 29, 2002· Updated Jun 16, 2026

CVE-2002-0267

CVE-2002-0267

Description

preferences.php in Simple Internet Publishing System (SIPS) before 0.3.1 allows remote attackers to gain administrative privileges via a linebreak in the "theme" field followed by the Status::admin command, which causes the Status line to be entered into the password file.

Affected products

5
  • Sips/Sips5 versions
    cpe:2.3:a:sips:sips:0.2.4:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:sips:sips:0.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:sips:sips:0.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:sips:sips:0.3.0pl1:*:*:*:*:*:*:*
    • cpe:2.3:a:sips:sips:0.3.0pl2:*:*:*:*:*:*:*
    • (no CPE)range: <0.3.1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.