Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1506

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2002-1506
Last Modified 05 Sep 2008 04:30:46
Published 02 Apr 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1506

Summary

Buffer overflow in Linuxconf before 1.28r4 allows local users to execute arbitrary code via a long LINUXCONF_LANG environment variable, which overflows an error string that is generated.

Vulnerable Systems

Application

  • Jacques Gelinas Linuxconf 1.1.6r10

  • Jacques Gelinas Linuxconf 1.1.7

  • Jacques Gelinas Linuxconf 1.1.8

  • Jacques Gelinas Linuxconf 1.1.9r1

  • Jacques Gelinas Linuxconf 1.1.9r2

  • Jacques Gelinas Linuxconf 1.2

  • Jacques Gelinas Linuxconf 1.2.1

  • Jacques Gelinas Linuxconf 1.2.1r1

  • Jacques Gelinas Linuxconf 1.2.1r2

  • Jacques Gelinas Linuxconf 1.2.1r3

  • Jacques Gelinas Linuxconf 1.2.1r4

  • Jacques Gelinas Linuxconf 1.2.1r5

  • Jacques Gelinas Linuxconf 1.2.1r6

  • Jacques Gelinas Linuxconf 1.2.1r7

  • Jacques Gelinas Linuxconf 1.2.1r8

  • Jacques Gelinas Linuxconf 1.2.2

  • Jacques Gelinas Linuxconf 1.2.3

  • Jacques Gelinas Linuxconf 1.2.3r1

  • Jacques Gelinas Linuxconf 1.2.3r2

  • Jacques Gelinas Linuxconf 1.2.4

  • Jacques Gelinas Linuxconf 1.2.4r2

  • Jacques Gelinas Linuxconf 1.2.4r4

  • Jacques Gelinas Linuxconf 1.2.4r5

  • Jacques Gelinas Linuxconf 1.27

  • Jacques Gelinas Linuxconf 1.27r3

  • Jacques Gelinas Linuxconf 1.27r4

  • Jacques Gelinas Linuxconf 1.27r5

  • Jacques Gelinas Linuxconf 1.28

  • Jacques Gelinas Linuxconf 1.28r1

  • Jacques Gelinas Linuxconf 1.28r2

  • Jacques Gelinas Linuxconf 1.28r3

  • Jacques Gelinas Linuxconf 1.2r1

  • Jacques Gelinas Linuxconf 1.2r2


References

BID - 5585

XF - linuxconf-linuxconflang-env-bo(9980)

BUGTRAQ - 20020828 iDEFENSE Security Advisory: Linuxconf locally exploitable buffer overflow

MISC - http://www.solucorp.qc.ca/changes.hc?projet=linuxconf&version=1.28r4


Last Updated: 27 May 2016 10:37:22