Published: 02/04/2003 Updated: 05/09/2008

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in Automatic File Distributor (AFD) 1.2.14 and previous versions allows local users to gain privileges via a long MON_WORK_DIR environment variable or -w (workdir) argument to (1) afd, (2) afdcmd, (3) afd_ctrl, (4) init_afd, (5) mafd, (6) mon_ctrl, (7) show_olog, or (8) udc.

Vulnerable Product	Search on Vulmon	Subscribe to Product
afd afd 1.2.2
afd afd 1.2.3
afd afd 1.2.4
afd afd 1.2.5
afd afd 1.2.10
afd afd 1.2.12
afd afd 1.2.14
afd afd 1.2.6
afd afd 1.2.8
afd afd 1.2
afd afd 1.2.1
afd afd 1.2.11
afd afd 1.2.13
afd afd 1.2.7
afd afd 1.2.9

/* source: wwwsecurityfocuscom/bid/5626/info AFD (Automatic File Distributor) is prone to a number of locally exploitable stack and heap based buffer overflow conditions These issues are all related to insufficient bounds checking of externally supplied values for the working directory, either via the command line or through an environm ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2002-09/0029.html http://www.securityfocus.com/bid/5626 http://www.iss.net/security_center/static/10036.php http://www.dwd.de/AFD/txt/CHANGES https://nvd.nist.gov https://www.exploit-db.com/exploits/21771/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-1503

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect