CVE-2002-1318

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1740%

EPSS Percentile40.62th

Published2002年12月11日

Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.

Affected Platforms (CPE)

📦

Samba

= 2.2.2

📦

Samba

= 2.2.3

📦

Samba

= 2.2.4

📦

Samba

= 2.2.5

📦

Samba

= 2.2.6

💻

Sgi

Irix

= 6.5

💻

Sgi

Irix

= 6.5.1

💻

Sgi

Irix

= 6.5.2

💻

Sgi

Irix

= 6.5.3

💻

Sgi

Irix

= 6.5.4

💻

Sgi

Irix

= 6.5.5

💻

Sgi

Irix

= 6.5.6

💻

Sgi

Irix

= 6.5.7

💻

Sgi

Irix

= 6.5.8

💻

Sgi

Irix

= 6.5.9

💻

Sgi

Irix

= 6.5.10

💻

Sgi

Irix

= 6.5.11

💻

Sgi

Irix

= 6.5.12

💻

Sgi

Irix

= 6.5.13

💻

Sgi

Irix

= 6.5.14

💻

Sgi

Irix

= 6.5.15

💻

Sgi

Irix

= 6.5.16

💻

Sgi

Irix

= 6.5.17

💻

Sgi

Irix

= 6.5.18

📦

Cifs 9000 Server

= a.01.08

📦

Cifs 9000 Server

= a.01.08.01

📦

Cifs 9000 Server

= a.01.09

References & Advisories

🔗 ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I

🔗 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000550

🔗 http://marc.info/?l=bugtraq&m=103801986818076&w=2

🔗 http://marc.info/?l=bugtraq&m=103859045302448&w=2

🔗 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580

🔗 http://us1.samba.org/samba/whatsnew/samba-2.2.7.html

🔗 http://www.ciac.org/ciac/bulletins/n-019.shtml

🔗 http://www.ciac.org/ciac/bulletins/n-023.shtml

Vulnerability Description

Affected Platforms (CPE)

Samba

Samba

Samba

Samba

Samba

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Irix

Cifs 9000 Server

Cifs 9000 Server

Cifs 9000 Server

References & Advisories

関連する脆弱性情報