CyberSec.Space Logo
Back to CVE Browser

CVE-2002-0432

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1700%
EPSS Percentile34.30th
PublishedJul 26, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in (1) lprintf and (2) cprintf in sysdep.c of Citadel/UX 5.90 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attacks such as a long HELO command to the SMTP server.

Affected Platforms (CPE)

πŸ“¦
Citadel

Ux

<= 5.90

References & Advisories

πŸ”— http://online.securityfocus.com/archive/1/260934
πŸ”— http://uncensored.citadel.org/pub/citadel/citadel-ux-5.91.tar.gz
πŸ”— http://www.iss.net/security_center/static/8426.php
πŸ”— http://www.securityfocus.com/bid/4263
πŸ”— http://online.securityfocus.com/archive/1/260934
πŸ”— http://uncensored.citadel.org/pub/citadel/citadel-ux-5.91.tar.gz
πŸ”— http://www.iss.net/security_center/static/8426.php
πŸ”— http://www.securityfocus.com/bid/4263

Related Vulnerabilities

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-135910.0

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause ...

CVE-2002-204710.0

The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metach...