CVE-2002-1387

MEDIUM

4.6

CVSS Severity Score

EPSS Score0.0300%

EPSS Percentile43.88th

PublishedJan 2, 2003

Last ModifiedApr 16, 2026

Vulnerability Description

The spray mode in traceroute-nanog (aka traceroute-ng) may allow local users to overwrite arbitrary memory locations via an array index overflow using the nprobes (number of probes) argument.

Affected Platforms (CPE)

📦

Ehud Gavron

Tracesroute

= 6.0

📦

Ehud Gavron

Tracesroute

= 6.1

📦

Ehud Gavron

Tracesroute

= 6.1.1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=103849968732634&w=2

Related Vulnerabilities

CVE-2002-10514.6

Format string vulnerability in TrACESroute 6.0 GOLD (aka NANOG traceroute) allows local users to execute arbitrary code via the -T...

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...

CVE-2002-000510.0

Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary...

CVE-2002-000710.0

CGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bind to the LDAP server via a re...