Vulnerability Details CVE-2002-0900
Buffer overflow in pks PGP public key web server before 0.9.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long search argument to the lookup capability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.095
EPSS Ranking 92.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://online.securityfocus.com/archive/1/274107
- http://www.iss.net/security_center/static/9171.php
- http://www.rubin.ch/pgp/src/patch_buffoverflow20020525
- http://www.securityfocus.com/bid/4828
- http://online.securityfocus.com/archive/1/274107
- http://www.iss.net/security_center/static/9171.php
- http://www.rubin.ch/pgp/src/patch_buffoverflow20020525
- http://www.securityfocus.com/bid/4828
Products affected by CVE-2002-0900
-
cpe:2.3:a:mit:pgp_public_key_server:0.9.2
-
cpe:2.3:a:mit:pgp_public_key_server:0.9.4