Unrated severityNVD Advisory· Published Oct 10, 2002· Updated Apr 16, 2026

CVE-2002-0706

Description

UserManager.js in the Web Reports Server for SurfControl SuperScout WebFilter uses weak encryption for administrator functions, which allows remote attackers to decrypt the administrative password using a hard-coded key in a Javascript function.

Affected products

Surfcontrol/Superscout Web Filter2 versions
cpe:2.3:a:surfcontrol:superscout_web_filter:3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:surfcontrol:superscout_web_filter:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:surfcontrol:superscout_web_filter:3.0.3:*:*:*:*:*:*:*
Surfcontrol/Web Filter2 versions
cpe:2.3:a:surfcontrol:web_filter:4.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:surfcontrol:web_filter:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:surfcontrol:web_filter:4.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000