Vulnerability Description
Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log file using an application such as Microsoft's Event Viewer.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Heysoft | Eventsave | 5.1 |
| Heysoft | Eventsave\+ | 5.1 |
Related Weaknesses (CWE)
References
- http://securitytracker.com/id?1005517Broken LinkPatchThird Party Advisory
- http://www.heysoft.de/nt/eventlog/hsb01e.htmBroken LinkPatch
- http://www.iss.net/security_center/static/10535.phpBroken LinkPatch
- http://www.securityfocus.com/bid/6095Broken LinkPatchThird Party Advisory
- http://securitytracker.com/id?1005517Broken LinkPatchThird Party Advisory
- http://www.heysoft.de/nt/eventlog/hsb01e.htmBroken LinkPatch
- http://www.iss.net/security_center/static/10535.phpBroken LinkPatch
- http://www.securityfocus.com/bid/6095Broken LinkPatchThird Party Advisory
FAQ
What is CVE-2002-1869?
CVE-2002-1869 is a vulnerability with a CVSS score of 3.3 (LOW). Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log ...
How severe is CVE-2002-1869?
CVE-2002-1869 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1869?
Check the references section above for vendor advisories and patch information. Affected products include: Heysoft Eventsave, Heysoft Eventsave\+.