{"id": "CVE-2002-0198", "bulletinFamily": "NVD", "title": "CVE-2002-0198", "description": "Buffer overflow in plDaniels ripMime 1.2.6 and earlier, as used in other programs such as xamime and inflex, allows remote attackers to execute arbitrary code via an attachment in a long filename.", "published": "2002-05-16T04:00:00", "modified": "2016-10-18T02:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0198", "reporter": "cve@mitre.org", "references": ["http://marc.info/?l=bugtraq&m=101182636812381&w=2", "http://pldaniels.org/ripmime/CHANGELOG", "http://www.securityfocus.com/bid/3941", "http://www.iss.net/security_center/static/7983.php"], "cvelist": ["CVE-2002-0198"], "type": "cve", "lastseen": "2019-05-29T18:07:38", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "e59754143c2379b128fa938259ed2dde"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "9c12cf5f0780aef6f69fb7ea8a45527d"}, {"key": "cpe23", "hash": "4fa9769c7ea670dd9144c520efc2ce40"}, {"key": "cvelist", "hash": "04c88077aa1b2ed1fe686e0ff8b45cee"}, {"key": "cvss", "hash": "edfca85c4c320ffaa9dcfdcb6a20ce1d"}, {"key": "cvss2", "hash": "11e56c2d8f36b1920223217250e3f2a6"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "0180f4d86e3b8f78d61dddabac148029"}, {"key": "href", "hash": "c60166db88ea06cf800c448689823086"}, {"key": "modified", "hash": "482af7d7e17bb1ad336c0766a0d3555d"}, {"key": "published", "hash": "c73cd24da27964bdae2b9b693666d5f1"}, {"key": "references", "hash": "eff13f337a1fcdffe0cdbb9b0f1951a0"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "61eda94fc6e96fc6c27fefa141a63a9f"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "5fc822308c562a452c4fef95967e59015f5960685ceb29ff7af2b5043d867453", "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:8340"]}], "modified": "2019-05-29T18:07:38"}, "score": {"value": 7.3, "vector": "NONE", "modified": "2019-05-29T18:07:38"}, "vulnersScore": 7.3}, "objectVersion": "1.3", "cpe": ["cpe:/a:paul_l_daniels:ripmime:1.2.0", "cpe:/a:paul_l_daniels:ripmime:1.2.3", "cpe:/a:paul_l_daniels:ripmime:1.2.1", "cpe:/a:paul_l_daniels:inflex:1.0.10", "cpe:/a:paul_l_daniels:ripmime:1.2.4", "cpe:/a:paul_l_daniels:ripmime:1.2.5", "cpe:/a:paul_l_daniels:ripmime:1.2.2", "cpe:/a:paul_l_daniels:ripmime:1.2.6"], "affectedSoftware": [{"name": "paul_l_daniels ripmime", "operator": "eq", "version": "1.2.4"}, {"name": "paul_l_daniels ripmime", "operator": "eq", "version": "1.2.3"}, {"name": "paul_l_daniels inflex", "operator": "eq", "version": "1.0.10"}, {"name": "paul_l_daniels ripmime", "operator": "eq", "version": "1.2.1"}, {"name": "paul_l_daniels ripmime", "operator": "eq", "version": "1.2.0"}, {"name": "paul_l_daniels ripmime", "operator": "eq", "version": "1.2.6"}, {"name": "paul_l_daniels ripmime", "operator": "eq", "version": "1.2.2"}, {"name": "paul_l_daniels ripmime", "operator": "eq", "version": "1.2.5"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:paul_l_daniels:inflex:1.0.10:*:*:*:*:*:*:*", "cpe:2.3:a:paul_l_daniels:ripmime:1.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:paul_l_daniels:ripmime:1.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:paul_l_daniels:ripmime:1.2.6:*:*:*:*:*:*:*", "cpe:2.3:a:paul_l_daniels:ripmime:1.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:paul_l_daniels:ripmime:1.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:paul_l_daniels:ripmime:1.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:paul_l_daniels:ripmime:1.2.5:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"]}

{"osvdb": [{"lastseen": "2017-04-28T13:20:03", "bulletinFamily": "software", "description": "## Vulnerability Description\nA local overflow exists in ripMIME. The e-mail filter fails to properly handle overly long file names containing 2079 characters or more when passed via certain command-line options, resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of integrity.\n## Solution Description\nUpgrade to version 1.2.7 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nA local overflow exists in ripMIME. The e-mail filter fails to properly handle overly long file names containing 2079 characters or more when passed via certain command-line options, resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of integrity.\n## References:\nVendor URL: http://pldaniels.org/ripmime/\n[Vendor Specific Advisory URL](http://pldaniels.org/ripmime/CHANGELOG)\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-01/0293.html\nISS X-Force ID: 7983\n[CVE-2002-0198](https://vulners.com/cve/CVE-2002-0198)\nBugtraq ID: 3941\n", "modified": "2002-01-22T00:00:00", "published": "2002-01-22T00:00:00", "href": "https://vulners.com/osvdb/OSVDB:8340", "id": "OSVDB:8340", "type": "osvdb", "title": "ripMIME Long File Name Overflow", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}