Published: 23/12/2002 Updated: 10/10/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in the get_origin function in traceroute-nanog allows malicious users to execute arbitrary code via long WHOIS responses.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ehud gavron tracesroute 6.0
ehud gavron tracesroute 6.1.1

A vulnerability has been discovered in NANOG traceroute, an enhanced version of the Van Jacobson/BSD traceroute program A buffer overflow occurs in the 'get_origin()' function Due to insufficient bounds checking performed by the whois parser, it may be possible to corrupt memory on the system stack This vulnerability can be exploited by a remote ...

source: wwwsecurityfocuscom/bid/6166/info A vulnerability has been discovered in Traceroute-nanog It has been reported that Traceroute-nanog contains a buffer overflow condition The overflow occurs in the 'get_origin()' function in the 'traceroutec' file Due to insufficient bounds checking performed by the whois parser, it may be pos ...

NVD-CWE-Other http://www.securityfocus.com/bid/6166 http://www.debian.org/security/2003/dsa-254 http://www.novell.com/linux/security/advisories/2002_043_traceroute_nanog_nkitb.html http://marc.info/?l=bugtraq&m=103858895600963&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/10778 https://nvd.nist.gov https://www.debian.org/security/./dsa-254 https://www.exploit-db.com/exploits/22014/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-1364

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect