Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2002-0497

Published: 12/08/2002 Updated: 05/09/2008
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N
Subscribe to Mtr

Vulnerability Summary

Buffer overflow in mtr 0.46 and previous versions, when installed setuid root, allows local users to access a raw socket via a long MTR_OPTIONS environment variable.

Vulnerable Product Search on Vulmon Subscribe to Product

mtr mtr 0.41

Vendor Advisories

Debian Security Advisories: DSA-124-1 mtr -- buffer overflow
The authors of mtr released a new upstream version, noting a non-exploitable buffer overflow in their ChangeLog Przemyslaw Frasunek, however, found an easy way to exploit this bug, which allows an attacker to gain access to the raw socket, which makes IP spoofing and other malicious network activity possible The problem has been fixed by the Debi ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/4217http://www.iss.net/security_center/static/8367.phphttp://www.debian.org/security/2002/dsa-124http://archives.neohapsis.com/archives/bugtraq/2002-03/0048.htmlhttps://nvd.nist.govhttps://www.debian.org/security/./dsa-124
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook