Lucene search

MitreCVE-2002-0967

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-0967

2003-04-0205:00:00

mitre

web.nvd.nist.gov

cve

buffer overflow

edonkey 2000

remote attackers

denial of service

arbitrary code

url

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.3

Confidence

High

EPSS

0.032

Percentile

91.3%

JSON

Buffer overflow in eDonkey 2000 35.16.60 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long “ed2k:” URL.

Affected configurations

Nvd

Node

edonkey2000edonkey_2000_clientMatch35.16.59

edonkey2000edonkey_2000_clientMatch35.16.60

VendorProductVersionCPE
edonkey2000edonkey_2000_client35.16.59cpe:2.3:a:edonkey2000:edonkey_2000_client:35.16.59:*:*:*:*:*:*:*
edonkey2000edonkey_2000_client35.16.60cpe:2.3:a:edonkey2000:edonkey_2000_client:35.16.60:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
edonkey2000	edonkey_2000_client	35.16.59	cpe:2.3:a:edonkey2000:edonkey_2000_client:35.16.59:::::::*
edonkey2000	edonkey_2000_client	35.16.60	cpe:2.3:a:edonkey2000:edonkey_2000_client:35.16.60:::::::*

References

online.securityfocus.com/archive/1/275708

www.edonkey2000.com/

www.iss.net/security_center/static/9278.php

www.osvdb.org/5042

www.securityfocus.com/bid/4951

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.3

Confidence

High

EPSS

0.032

Percentile

91.3%

JSON

Related for CVE-2002-0967