CVE-2002-1215

Опубликовано: 28 окт. 2002

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

Multiple format string vulnerabilities in heartbeat 0.4.9 and earlier (claimed as buffer overflows in some sources) allow remote attackers to execute arbitrary code via certain packets to UDP port 694 (incorrectly claimed as TCP in some sources).

Ссылки

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000540
http://linux-ha.org/security/sec01.txt
http://www.debian.org/security/2002/dsa-174
Patch
Vendor Advisory
http://www.iss.net/security_center/static/10357.php
Vendor Advisory
http://www.novell.com/linux/security/advisories/2002_037_heartbeat.html
http://www.securityfocus.com/bid/5955
Patch
Vendor Advisory
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000540
http://linux-ha.org/security/sec01.txt
http://www.debian.org/security/2002/dsa-174
Patch
Vendor Advisory
http://www.iss.net/security_center/static/10357.php
Vendor Advisory
http://www.novell.com/linux/security/advisories/2002_037_heartbeat.html
http://www.securityfocus.com/bid/5955
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:linux-ha:heartbeat:*:*:*:*:*:*:*:*

Версия до 0.4.9 (включая)

EPSS

Процентиль: 94%

0.15353

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2002-1215

debian

почти 23 года назад

Multiple format string vulnerabilities in heartbeat 0.4.9 and earlier ...

GHSA-mm3r-mrmx-x8fm

github

больше 3 лет назад