ID CVE-2002-2381 Type cve Reporter NVD Modified 2008-09-05T16:33:04
Description
Multiple buffer overflows in (1) tetrinet_inmessage, (2) speclist_add and (3) config-getthemeinfo of GTetrinet 0.4.3 and earlier allow remote attackers to casue a denial of service and possibly execute arbitrary code.
{"href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-2381", "history": [], "references": ["http://www.debian.org/security/2002/dsa-205", "http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-11/0303.html", "http://securitytracker.com/id?1005497", "http://www.securityfocus.com/bid/6062", "http://www.iss.net/security_center/static/10511.php"], "lastseen": "2016-09-03T03:52:22", "bulletinFamily": "NVD", "title": "CVE-2002-2381", "cpe": ["cpe:/a:ka-shu_wong:gtetrinet:0.4.3", "cpe:/a:ka-shu_wong:gtetrinet:0.4.2", "cpe:/a:ka-shu_wong:gtetrinet:0.4.1", "cpe:/a:ka-shu_wong:gtetrinet:0.4"], "viewCount": 0, "id": "CVE-2002-2381", "hash": "5de9a2f85091957476c151d712a53075d3e5058d295ac6579e439e81f0a914d1", "description": "Multiple buffer overflows in (1) tetrinet_inmessage, (2) speclist_add and (3) config-getthemeinfo of GTetrinet 0.4.3 and earlier allow remote attackers to casue a denial of service and possibly execute arbitrary code.", "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "cvelist": ["CVE-2002-2381"], "scanner": [], "modified": "2008-09-05T16:33:04", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "objectVersion": "1.2", "reporter": "NVD", "type": "cve", "published": "2002-12-31T00:00:00", "enchantments": {"vulnersScore": 7.5}}
{"result": {"nessus": [{"id": "DEBIAN_DSA-205.NASL", "type": "nessus", "title": "Debian DSA-205-1 : gtetrinet - buffer overflow", "description": "Steve Kemp and James Antill found several buffer overflows in the gtetrinet (a multiplayer tetris-like game) package as shipped in Debian GNU/Linux 3.0, which could be abused by a malicious server.", "published": "2004-09-29T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=15042", "cvelist": ["CVE-2002-2381"], "lastseen": "2017-10-29T13:43:50"}], "openvas": [{"id": "OPENVAS:53855", "type": "openvas", "title": "Debian Security Advisory DSA 205-1 (gtetrinet)", "description": "The remote host is missing an update to gtetrinet\nannounced via advisory DSA 205-1.", "published": "2008-01-17T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53855", "cvelist": ["CVE-2002-2381"], "lastseen": "2017-07-24T12:50:25"}], "debian": [{"id": "DSA-205", "type": "debian", "title": "gtetrinet -- buffer overflow", "description": "Steve Kemp and James Antill found several buffer overflows in the gtetrinet (a multiplayer tetris-like game) package as shipped in Debian GNU/Linux 3.0, which could be abused by a malicious server.\n\nThis has been fixed in upstream version 0.4.4 and release 0.4.1-9woody1.1 of the Debian package.", "published": "2002-12-10T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://www.debian.org/security/dsa-205", "cvelist": ["CVE-2002-2381"], "lastseen": "2018-07-04T01:32:29"}]}}
