Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0198

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-0198
Last Modified 10 Sep 2008 08:00:41
Published 16 May 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0198

Summary

Buffer overflow in plDaniels ripMime 1.2.6 and earlier, as used in other programs such as xamime and inflex, allows remote attackers to execute arbitrary code via an attachment in a long filename.

Vulnerable Systems

Application

  • Paul L Daniels Inflex 1.0.10

  • Paul L Daniels Ripmime 1.2.0

  • Paul L Daniels Ripmime 1.2.1

  • Paul L Daniels Ripmime 1.2.2

  • Paul L Daniels Ripmime 1.2.3

  • Paul L Daniels Ripmime 1.2.4

  • Paul L Daniels Ripmime 1.2.5

  • Paul L Daniels Ripmime 1.2.6


References

XF - ripmime-long-filename-bo(7983)

CONFIRM - http://pldaniels.org/ripmime/CHANGELOG

BUGTRAQ - 20020122 pldaniels - ripMime 1.2.6 and lower?

BID - 3941


Last Updated: 27 May 2016 10:36:49