Lucene search

[email protected]CVE-2002-2049

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2002-2049

2022-10-0316:23:49

[email protected]

web.nvd.nist.gov

cve

backdoor

dsniff

fragroute

fragrouter

security

vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.5%

JSON

configure for Dsniff 2.3, fragroute 1.2, and fragrouter 1.6, when downloaded from monkey.org on May 17, 2002, has been modified to contain a backdoor, which allows remote attackers to access the system.

Affected configurations

NVD

Node

dug_songdsniffMatch2.3

dug_songfragrouteMatch1.2

dug_songfragrouterMatch1.6

CPENameOperatorVersion
dug_song:dsniffdug song dsniffeq2.3
dug_song:fragroutedug song fragrouteeq1.2
dug_song:fragrouterdug song fragroutereq1.6

CPE	Name	Operator	Version
dug_song:dsniff	dug song dsniff	eq	2.3
dug_song:fragroute	dug song fragroute	eq	1.2
dug_song:fragrouter	dug song fragrouter	eq	1.6

References

archives.neohapsis.com/archives/bugtraq/2002-05/0281.html

www.freebsd.org/cgi/query-pr.cgi?pr=38716

www.iss.net/security_center/static/9272.php

www.securityfocus.com/bid/4898

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.5%

JSON

Related for CVE-2002-2049

cvelist1 nvd1