Lucene search
HistoryApr 02, 2003 - 5:00 a.m.
CVE-2002-1500
cve-2002-1500
buffer overflow
netbsd
mrinfo
mtrace
pppd
nvd
security vulnerability
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Buffer overflow in (1) mrinfo, (2) mtrace, and (3) pppd in NetBSD 1.4.x through 1.6 allows local users to gain privileges by executing the programs after filling the file descriptor tables, which produces file descriptors larger than FD_SETSIZE, which are not checked by FD_SET().
Affected configurations
Node
netbsdnetbsdMatch1.4
ORnetbsdnetbsdMatch1.4alpha
ORnetbsdnetbsdMatch1.4arm32
ORnetbsdnetbsdMatch1.4sparc
ORnetbsdnetbsdMatch1.4x86
ORnetbsdnetbsdMatch1.4.1
ORnetbsdnetbsdMatch1.4.1alpha
ORnetbsdnetbsdMatch1.4.1arm32
ORnetbsdnetbsdMatch1.4.1sh3
ORnetbsdnetbsdMatch1.4.1sparc
ORnetbsdnetbsdMatch1.4.1x86
ORnetbsdnetbsdMatch1.4.2
ORnetbsdnetbsdMatch1.4.2alpha
ORnetbsdnetbsdMatch1.4.2arm32
ORnetbsdnetbsdMatch1.4.2sparc
ORnetbsdnetbsdMatch1.4.2x86
ORnetbsdnetbsdMatch1.4.3
ORnetbsdnetbsdMatch1.5
ORnetbsdnetbsdMatch1.5sh3
ORnetbsdnetbsdMatch1.5x86
ORnetbsdnetbsdMatch1.5.1
ORnetbsdnetbsdMatch1.5.2
ORnetbsdnetbsdMatch1.5.3
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2002-1500