Vulnerability Details CVE-2002-2381
Multiple buffer overflows in (1) tetrinet_inmessage, (2) speclist_add and (3) config-getthemeinfo of GTetrinet 0.4.3 and earlier allow remote attackers to casue a denial of service and possibly execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 85.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://gtetrinet.sourceforge.net/
- http://securitytracker.com/id?1005497
- http://www.debian.org/security/2002/dsa-205
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-11/0303.html
- http://www.iss.net/security_center/static/10511.php
- http://www.securityfocus.com/bid/6062
- http://gtetrinet.sourceforge.net/
- http://securitytracker.com/id?1005497
- http://www.debian.org/security/2002/dsa-205
- http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-11/0303.html
- http://www.iss.net/security_center/static/10511.php
- http://www.securityfocus.com/bid/6062
Products affected by CVE-2002-2381
-
cpe:2.3:a:ka-shu_wong:gtetrinet:0.4
-
cpe:2.3:a:ka-shu_wong:gtetrinet:0.4.1
-
cpe:2.3:a:ka-shu_wong:gtetrinet:0.4.2
-
cpe:2.3:a:ka-shu_wong:gtetrinet:0.4.3