Lucene search
HistoryDec 23, 2002 - 5:00 a.m.
CVE-2002-1364
cve-2002-1364
buffer overflow
traceroute-nanog
arbitrary code execution
whois responses
nvd
7.8 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
58.9%
Buffer overflow in the get_origin function in traceroute-nanog allows attackers to execute arbitrary code via long WHOIS responses.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ehud_gavron:tracesroute | ehud gavron tracesroute | eq | 6.0 |
| ehud_gavron:tracesroute | ehud gavron tracesroute | eq | 6.1.1 |
Related
nessus
nessus
Debian DSA-254-1 : traceroute-nanog - buffer overflow
2004-09-29 00:00:00
debian
debian
[SECURITY] [DSA 254-1] New NANOG traceroute packages fix buffer overflow
2003-02-27 14:45:59
[SECURITY] [DSA 254-1] New NANOG traceroute packages fix buffer overflow
2003-02-27 14:45:59
openvas
openvas
Debian Security Advisory DSA 254-1 (traceroute-nanog)
2008-01-17 00:00:00
Debian Security Advisory DSA 254-1 (traceroute-nanog)
2008-01-17 00:00:00
osv
osv
traceroute-nanog - buffer overflow
2003-02-27 00:00:00
7.8 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
58.9%
Related for CVE-2002-1364