Lucene search

[email protected]CVE-2002-0901

HistoryOct 04, 2002 - 4:00 a.m.

CVE-2002-0901

2002-10-0404:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

amanda

buffer overflow

code execution

security vulnerability

cve-2002-0901

nvd

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.023 Low

EPSS

Percentile

89.5%

JSON

Multiple buffer overflows in Advanced Maryland Automatic Network Disk Archiver (AMANDA) 2.3.0.4 allow (1) remote attackers to execute arbitrary code via long commands to the amindexd daemon, or certain local users to execute arbitrary code via long command line arguments to the programs (2) amcheck, (3) amgetidx, (4) amtrmidx, (5) createindex-dump, or (6) createindex-gnutar.

CPENameOperatorVersion
amanda:amandaamandaeq2.3.0.4

CPE	Name	Operator	Version
amanda:amanda	amanda	eq	2.3.0.4

References

online.securityfocus.com/archive/1/274215

www.iss.net/security_center/static/9181.php

www.iss.net/security_center/static/9182.php

www.securityfocus.com/bid/4836

www.securityfocus.com/bid/4840

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.023 Low

EPSS

Percentile

89.5%

JSON

Related for CVE-2002-0901

debiancve1