Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1215

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-1215
Last Modified 10 Sep 2008 03:14:03
Published 28 Oct 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1215

Summary

Multiple format string vulnerabilities in heartbeat 0.4.9 and earlier (claimed as buffer overflows in some sources) allow remote attackers to execute arbitrary code via certain packets to UDP port 694 (incorrectly claimed as TCP in some sources).

Vulnerable Systems

Application

  • Linux-ha Heartbeat 0.4.9


References

BID - 5955

DEBIAN - DSA-174

SUSE - SuSE-SA:2002:037

XF - linuxha-heartbeat-bo(10357)

CONFIRM - http://linux-ha.org/security/sec01.txt

CONECTIVA - CLA-2002:540


Last Updated: 27 May 2016 10:37:14