Vulnerability Details CVE-2002-0587
Buffer overflow in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to cause a denial of service or execute arbitrary code via the Error or Notice parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0195.html
- http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/aolserver/aolserver/nspd/log.c.diff?r1=1.4&r2=1.4.6.1
- http://sourceforge.net/tracker/index.php?func=detail&aid=533141&group_id=3152&atid=303152
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0195.html
- http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/aolserver/aolserver/nspd/log.c.diff?r1=1.4&r2=1.4.6.1
- http://sourceforge.net/tracker/index.php?func=detail&aid=533141&group_id=3152&atid=303152
Products affected by CVE-2002-0587
-
cpe:2.3:a:aol:aol_server:3.0
-
cpe:2.3:a:aol:aol_server:3.1
-
cpe:2.3:a:aol:aol_server:3.2
-
cpe:2.3:a:aol:aol_server:3.2.1
-
cpe:2.3:a:aol:aol_server:3.3
-
cpe:2.3:a:aol:aol_server:3.3.1
-
cpe:2.3:a:aol:aol_server:3.4
-
cpe:2.3:a:aol:aol_server:3.4.1
-
cpe:2.3:a:aol:aol_server:3.4.2