Lucene search

[email protected]CVE-2002-1158

HistoryDec 18, 2002 - 5:00 a.m.

CVE-2002-1158

2002-12-1805:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-1158

buffer overflow

canna

local users

arbitrary code execution

7.3 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.5%

JSON

Buffer overflow in the irw_through function for Canna 3.5b2 and earlier allows local users to execute arbitrary code as the bin user.

CPENameOperatorVersion
canna:cannacannale3.5b2

CPE	Name	Operator	Version
canna:canna	canna	le	3.5b2

References

canna.sourceforge.jp/sec/Canna-2002-01.txt

marc.info/?l=bugtraq&m=104041812206344&w=2

www.debian.org/security/2003/dsa-224

www.redhat.com/support/errata/RHSA-2002-246.html

www.redhat.com/support/errata/RHSA-2002-261.html

www.redhat.com/support/errata/RHSA-2003-115.html

www.securityfocus.com/bid/6351

exchange.xforce.ibmcloud.com/vulnerabilities/10831

7.3 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.5%

JSON

Related for CVE-2002-1158

debiancve1 debian2 openvas2 nessus2 redhat1 osv1