Lucene search

[email protected]CVE-2002-0125

HistoryMar 25, 2002 - 5:00 a.m.

CVE-2002-0125

2002-03-2505:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

buffer overflow

clanlib library 0.5

arbitrary code execution

local users

cve-2002-0125

8.2 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Buffer overflow in ClanLib library 0.5 may allow local users to execute arbitrary code in games that use the library, such as (1) Super Methane Brothers, (2) Star War, (3) Kwirk, (4) Clankanoid, and others, via a long HOME environment variable.

CPENameOperatorVersion
clanlib:clanlibclanlibeq0.5

CPE	Name	Operator	Version
clanlib:clanlib	clanlib	eq	0.5

References

online.securityfocus.com/archive/1/250414

www.iss.net/security_center/static/7905.php

www.securityfocus.com/bid/3877

8.2 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON