← CVECheck
HomeVulnerabilities

CVE-2002-1154 — MEDIUM severity vulnerability (anlgform.pl in Analog before 5.23 does not restrict access t)

anlgform.pl in Analog before 5.23 does not restrict access to the PROGRESSFREQ progress update command, which allows remote attackers to cause a denial of service (disk consumption) by using the command to report updates more frequently and fill the web server error log.

CVE IDCVE-2002-1154
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:N/A:P
CWENVD-CWE-Other
StatusModified
Published2002-10-11
Last modified2026-04-16
Descriptionanlgform.pl in Analog before 5.23 does not restrict access to the PROGRESSFREQ progress update command, which allows remote attackers to cause a denial of service (disk consumption) by using the command to report updates more frequently and fill the web server error log.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →