CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-0467

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1650%
EPSS Percentile10.96th
Published2002年8月12日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflows in Ecartis (formerly Listar) 1.0.0 before snapshot 20020125 allows remote attackers to execute arbitrary code via (1) address_match() of mystring.c or (2) other functions in tolist.c.

Affected Platforms (CPE)

📦
Ecartis

Ecartis

= 1.0.0_snapshot_2002-01-21
📦
Listar

Listar

= 0.126a
📦
Listar

Listar

= 0.127a
📦
Listar

Listar

= 0.129a

References & Advisories

🔗 http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0063.html
🔗 http://www.debian.org/security/2002/dsa-123
🔗 http://www.ecartis.org/
🔗 http://www.iss.net/security_center/static/8284.php
🔗 http://www.securityfocus.com/archive/1/261209
🔗 http://www.securityfocus.com/bid/4176
🔗 http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0063.html
🔗 http://www.debian.org/security/2002/dsa-123

関連する脆弱性情報

CVE-2003-078110.0

Unknown vulnerability in ecartis before 1.0.0 does not properly validate user input, which allows attackers to obtain mailing list...

CVE-2003-078210.0

Multiple buffer overflows in ecartis before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code...

CVE-2003-01627.5

Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privil...

CVE-2002-04697.2

Ecartis (formerly Listar) 1.0.0 in snapshot 20020125 and earlier does not properly drop privileges when Ecartis is installed setui...