Vulnerability Details CVE-2002-1889
Off-by-one buffer overflow in the context_action function in context.c of Logsurfer 1.41 through 1.5a allows remote attackers to cause a denial of service (crash) via a malformed log entry.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.6%
CVSS Severity
CVSS v2 Score 5.0
References
- ftp://ftp.cert.dfn.de/pub/tools/audit/logsurfer/logsurfer.README.asc
- http://online.securityfocus.com/archive/1/294131
- http://www.iss.net/security_center/static/10287.php
- http://www.securityfocus.com/bid/5898
- ftp://ftp.cert.dfn.de/pub/tools/audit/logsurfer/logsurfer.README.asc
- http://online.securityfocus.com/archive/1/294131
- http://www.iss.net/security_center/static/10287.php
- http://www.securityfocus.com/bid/5898