CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

sastcpd in SAS/Base 8.0 might allow local users to gain privileges by setting the netencralg environment variable, which causes a segmentation fault...

7.2CVSS6.9AI score0.00049EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:29 p.m.•3 views

CVE-2002-2017

sastcpd in SAS/Base 8.0 allows local users to execute arbitrary code by setting the authprog environment variable to reference a malicious program, which is then executed by sastcpd...

10CVSS7.6AI score0.00818EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 4:11 a.m.•1 views

SUSE CVE-2019-11810

An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasascreateframepool fails in megasasalloccmds in drivers/scsi/megaraid/megaraidsasbase.c. This causes a Denial of Service, related to a use-after-free...

3.9CVSS6.3AI score0.0184EPSS

Exploits0References17

RedHat Linux•added 2019/09/20 12:4 p.m.•1 views

kernel: a NULL pointer dereference in drivers/scsi/megaraid/megaraid_sas_base.c leading to DoS

A flaw was found in the Linux kernel, prior to version 5.0.7, in drivers/scsi/megaraid/megaraidsasbase.c, where a NULL pointer dereference can occur when megasascreateframepool fails in megasasalloccmds. An attacker can crash the system if they were able to load the megaraidsas kernel module and...

7.8CVSS7AI score0.0184EPSS

Exploits0References4

Cvelist•added 2005/07/14 4:0 a.m.•14 views

CVE-2002-2017

sastcpd in SAS/Base 8.0 allows local users to execute arbitrary code by setting the authprog environment variable to reference a malicious program, which is then executed by sastcpd...

7.2AI score0.00818EPSS

Exploits0References3

NVD•added 2002/12/31 5:0 a.m.•6 views

CVE-2002-2017

sastcpd in SAS/Base 8.0 allows local users to execute arbitrary code by setting the authprog environment variable to reference a malicious program, which is then executed by sastcpd...

10CVSS7.2AI score0.00818EPSS

Exploits0References3

NVD•added 2002/12/31 5:0 a.m.•12 views

CVE-2002-2018

sastcpd in SAS/Base 8.0 might allow local users to gain privileges by setting the netencralg environment variable, which causes a segmentation fault...

7.2CVSS6.5AI score0.00049EPSS

Exploits0References4

NVD•added 2002/05/16 4:0 a.m.•14 views

CVE-2002-0219

Buffer overflow in 1 sastcpd in SAS/Base 8.0 and 8.1 or 2 objspawn in SAS/Integration Technologies 8.0 and 8.1 allows local users to execute arbitrary code via large command line argument...

7.2CVSS7.6AI score0.00149EPSS

Exploits0References6

NVD•added 2002/05/16 4:0 a.m.•8 views

CVE-2002-0218

Format string vulnerability in 1 sastcpd in SAS/Base 8.0 and 8.1 or 2 objspawn in SAS/Integration Technologies 8.0 and 8.1 allows local users to execute arbitrary code via format specifiers in a command line argument...

7.2CVSS7.3AI score0.00105EPSS

Exploits0References6

Cvelist•added 2002/05/03 4:0 a.m.•15 views

CVE-2002-0218

7.3AI score0.00105EPSS

Exploits0References6

Cvelist•added 2002/05/03 4:0 a.m.•14 views

CVE-2002-0219

Buffer overflow in 1 sastcpd in SAS/Base 8.0 and 8.1 or 2 objspawn in SAS/Integration Technologies 8.0 and 8.1 allows local users to execute arbitrary code via large command line argument...

7.6AI score0.00149EPSS

Exploits0References6

CVE•added 2002/05/03 4:0 a.m.•40 views

CVE-2002-0219

CVE-2002-0219 affects SAS products: SAS/Base 8.0/8.1 (sastcpd) and SAS/Integration Technologies 8.0/8.1 (objspawn). The root cause is a buffer overflow triggered by a large command line argument, allowing a local user to execute arbitrary code. Impact is reported as local code execution with full...

7.2CVSS8AI score0.00149EPSS

Exploits0References6Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by