← CVECheck
HomeVulnerabilities

CVE-2002-1052 — MEDIUM severity vulnerability (Jigsaw 2.2.1 on Windows systems allows remote attackers to u)

Jigsaw 2.2.1 on Windows systems allows remote attackers to use MS-DOS device names in HTTP requests to (1) cause a denial of service using the "con" device, or (2) obtain the physical path of the server using two requests to the "aux" device.

CVE IDCVE-2002-1052
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:N/A:P
CWENVD-CWE-Other
StatusModified
Published2002-10-04
Last modified2026-04-16
DescriptionJigsaw 2.2.1 on Windows systems allows remote attackers to use MS-DOS device names in HTTP requests to (1) cause a denial of service using the "con" device, or (2) obtain the physical path of the server using two requests to the "aux" device.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →