CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2002-1386

MEDIUM
4.6
CVSS Severity Score
EPSS Score0.1320%
EPSS Percentile29.27th
Published2003年1月2日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in traceroute-nanog (aka traceroute-ng) may allow local users to execute arbitrary code via a long hostname argument.

Affected Platforms (CPE)

📦
Ehud Gavron

Tracesroute

= 6.0
📦
Ehud Gavron

Tracesroute

= 6.1
📦
Ehud Gavron

Tracesroute

= 6.1.1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=103849968732634&w=2
🔗 http://www.debian.org/security/2003/dsa-254
🔗 http://www.iss.net/security_center/static/10608.php
🔗 http://www.securityfocus.com/bid/6274
🔗 http://marc.info/?l=bugtraq&m=103849968732634&w=2
🔗 http://www.debian.org/security/2003/dsa-254
🔗 http://www.iss.net/security_center/static/10608.php
🔗 http://www.securityfocus.com/bid/6274

相關漏洞威脅

CVE-2002-10514.6

Format string vulnerability in TrACESroute 6.0 GOLD (aka NANOG traceroute) allows local users to execute arbitrary code via the -T...

CVE-2002-001210.0

Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges v...

CVE-2002-001310.0

Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial ...

CVE-2002-004810.0

Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allo...