Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1387

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2002-1387
Last Modified 10 Sep 2008 03:14:27
Published 02 Jan 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1387

Summary

The spray mode in traceroute-nanog (aka traceroute-ng) may allow local users to overwrite arbitrary memory locations via an array index overflow using the nprobes (number of probes) argument.

Vulnerable Systems

Application

  • Ehud Gavron Tracesroute 6.0

  • Ehud Gavron Tracesroute 6.1

  • Ehud Gavron Tracesroute 6.1.1


References

BUGTRAQ - 20021128 TracerouteNG - never ending story


Last Updated: 27 May 2016 10:37:18