Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2002-0239

Published: 29/05/2002 Updated: 18/10/2016
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 730
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Hanterm

Vulnerability Summary

Buffer overflow in hanterm 3.3.1 and previous versions allows local users to execute arbitrary code via a long string in the (1) -fn, (2) -hfb, or (3) -hfn argument.

Vulnerable Product Search on Vulmon Subscribe to Product

hanterm hanterm 3.3.1

hanterm hanterm 3.3

Vendor Advisories

Debian Security Advisories: DSA-112-1 hanterm -- buffer overflow
A set of buffer overflow problems have been found in hanterm, a Hangul terminal for X11 derived from xterm, that will read and display Korean characters in its terminal window The font handling code in hanterm uses hard limited string variables but didn't check for boundaries This problem can be exploited by a malicious user to gain access to the ...

Exploits

Exploit DB: Hanterm 3.3 - Local Buffer Overflow (2)
source: wwwsecurityfocuscom/bid/4050/info Hanterm is a replacement for xterm which includes Hangul support, used for Korean language systems A buffer overflow error exists in hanterm If it is called locally with a maliciously constructed parameter, it is possible to overflow a buffer This can result in the return address of a stack ...
Exploit DB: Hanterm 3.3 - Local Buffer Overflow (1)
source: wwwsecurityfocuscom/bid/4050/info Hanterm is a replacement for xterm which includes Hangul support, used for Korean language systems A buffer overflow error exists in hanterm If it is called locally with a maliciously constructed parameter, it is possible to overflow a buffer This can result in the return address of a stack fr ...

References

NVD-CWE-Otherhttp://www.debian.org/security/2002/dsa-112http://www.iss.net/security_center/static/8109.phphttp://online.securityfocus.com/archive/1/255168ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:41.hanterm.aschttp://securitytracker.com/id?1001950http://www.securityfocus.com/bid/4050http://marc.info/?l=bugtraq&m=101310874106455&w=2https://nvd.nist.govhttps://www.debian.org/security/./dsa-112https://www.exploit-db.com/exploits/21281/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook