CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-1364

HIGH
7.2
CVSS Severity Score
EPSS Score0.1170%
EPSS Percentile34.38th
Published2002年12月23日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the get_origin function in traceroute-nanog allows attackers to execute arbitrary code via long WHOIS responses.

Affected Platforms (CPE)

📦
Ehud Gavron

Tracesroute

= 6.0
📦
Ehud Gavron

Tracesroute

= 6.1.1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=103858895600963&w=2
🔗 http://www.debian.org/security/2003/dsa-254
🔗 http://www.novell.com/linux/security/advisories/2002_043_traceroute_nanog_nkitb.html
🔗 http://www.securityfocus.com/bid/6166
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/10778
🔗 http://marc.info/?l=bugtraq&m=103858895600963&w=2
🔗 http://www.debian.org/security/2003/dsa-254
🔗 http://www.novell.com/linux/security/advisories/2002_043_traceroute_nanog_nkitb.html

関連する脆弱性情報

CVE-2002-10514.6

Format string vulnerability in TrACESroute 6.0 GOLD (aka NANOG traceroute) allows local users to execute arbitrary code via the -T...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...

CVE-2002-001210.0

Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges v...