exploitDog

CVE-2001-1553

Опубликовано: 31 дек. 2001

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Buffer overflow in setiathome for SETI@home 3.03, if installed setuid, could allow local users to execute arbitrary code via long command line options (1) socks_server, (2) socks_user, and (3) socks_passwd. NOTE: since the default configuration of setiathome is not setuid, perhaps this issue should not be included in CVE.

Ссылки

http://archives.neohapsis.com/archives/vuln-dev/2001-q4/0662.html
Vendor Advisory
http://archives.neohapsis.com/archives/vuln-dev/2001-q4/0662.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:university_of_california:seti_at_home:3.03:*:*:*:*:*:*:*

EPSS

Процентиль: 27%

0.00091

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2001-1553

debian

больше 23 лет назад

Buffer overflow in setiathome for SETI@home 3.03, if installed setuid, ...

GHSA-67qg-fr69-72wp

github

около 3 лет назад

Buffer overflow in setiathome for SETI@home 3.03, if installed setuid, could allow local users to execute arbitrary code via long command line options (1) socks_server, (2) socks_user, and (3) socks_passwd. NOTE: since the default configuration of setiathome is not setuid, perhaps this issue should not be included in CVE.

EPSS

Процентиль: 27%

0.00091

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other