Lucene search

[email protected]CVE-2002-2002

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2002

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-2002

buffer overflow

compaq tru64

libc

code execution

environment variables

8.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

73.2%

JSON

Buffer overflow in libc in Compaq Tru64 4.0F, 5.0, 5.1 and 5.1A allows attackers to execute arbitrary code via long (1) LANG and (2) LOCPATH environment variables.

CPENameOperatorVersion
compaq:tru64compaq tru64eq5.0
compaq:tru64compaq tru64eq4.0f
compaq:tru64compaq tru64eq5.1a
compaq:tru64compaq tru64eq5.1

CPE	Name	Operator	Version
compaq:tru64	compaq tru64	eq	5.0
compaq:tru64	compaq tru64	eq	4.0f
compaq:tru64	compaq tru64	eq	5.1a
compaq:tru64	compaq tru64	eq	5.1

References

cert.uni-stuttgart.de/archive/bugtraq/2002/04/msg00219.html

ftp.support.compaq.com/patches/.new/html/SSRT-541.shtml

www.iss.net/security_center/static/8863.php

www.lac.co.jp/security/english/snsadv_e/51_e.html

www.securityfocus.com/bid/4544

8.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

73.2%

JSON