Vulnerability Details CVE-2002-0740
Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.0%
CVSS Severity
CVSS v2 Score 7.2
References
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0302.html
- http://online.securityfocus.com/archive/1/269667
- http://online.securityfocus.com/archive/1/270235
- http://www.iss.net/security_center/static/8910.php
- http://www.securityfocus.com/bid/4569
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0302.html
- http://online.securityfocus.com/archive/1/269667
- http://online.securityfocus.com/archive/1/270235
- http://www.iss.net/security_center/static/8910.php
- http://www.securityfocus.com/bid/4569
Products affected by CVE-2002-0740
-
cpe:2.3:a:slrn_development_team:slrn:0.9.6.2
-
cpe:2.3:a:slrn_development_team:slrn:0.9.6.3
-
cpe:2.3:a:slrn_development_team:slrn:0.9.6.4