CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
0.4%
Heap corruption vulnerability in the “at” program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.
Vendor | Product | Version | CPE |
---|---|---|---|
caldera | openlinux_server | 3.1 | cpe:2.3:a:caldera:openlinux_server:3.1:*:*:*:*:*:*:* |
caldera | openlinux_workstation | 3.1 | cpe:2.3:a:caldera:openlinux_workstation:3.1:*:*:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:68k:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:alpha:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:arm:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:ia-32:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:powerpc:*:*:*:*:* |
debian | debian_linux | 2.2 | cpe:2.3:o:debian:debian_linux:2.2:*:sparc:*:*:*:*:* |
freebsd | freebsd | 4.1.1 | cpe:2.3:o:freebsd:freebsd:4.1.1:*:*:*:*:*:*:* |
freebsd | freebsd | 4.2 | cpe:2.3:o:freebsd:freebsd:4.2:*:*:*:*:*:*:* |
marc.info/?l=bugtraq&m=101128661602088&w=2
marc.info/?l=bugtraq&m=101147632721031&w=2
online.securityfocus.com/advisories/3833
online.securityfocus.com/advisories/3969
www.debian.org/security/2002/dsa-102
www.novell.com/linux/security/advisories/2002_003_at_txt.html
www.redhat.com/support/errata/RHSA-2002-015.html
www.securityfocus.com/bid/3886
exchange.xforce.ibmcloud.com/vulnerabilities/7909