Lucene search

[email protected]CVE-2002-0130

HistoryMar 25, 2002 - 5:00 a.m.

CVE-2002-0130

2002-03-2505:00:00

[email protected]

web.nvd.nist.gov

129

cve-2002-0130

buffer overflow

efax 0.9

setuid root

local user

arbitrary code

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Buffer overflow in efax 0.9 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -x argument.

Affected configurations

NVD

Node

efaxefaxMatch0.8a

efaxefaxMatch0.9

efaxefaxMatch0.9a

CPENameOperatorVersion
efax:efaxefaxeq0.8a
efax:efaxefaxeq0.9
efax:efaxefaxeq0.9a

CPE	Name	Operator	Version
efax:efax	efax	eq	0.8a
efax:efax	efax	eq	0.9
efax:efax	efax	eq	0.9a

References

marc.info/?l=vuln-dev&m=101133782204289&w=2

seclists.org/bugtraq/2002/Jan/0212.html

www.iss.net/security_center/static/7920.php

www.securityfocus.com/bid/3894

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-0130

cvelist1 nvd1 cbl_mariner1