Vulnerabilities > CVE-2002-0468 - Local Buffer Overflow vulnerability in Ecartis/Listar
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Buffer overflows in Ecartis (formerly Listar) 1.0.0 in snapshot 20020427 and earlier allow local users to gain privileges via (1) a long command line argument, which is not properly handled in core.c, or possibly via bad uses of sprintf() in (2) moderate.c, (3) lcgi.c, (4) fileapi.c, (5) cookie.c, (6) codes.c, or other files.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 | |
| Application | 3 |
Exploit-Db
description Ecartis1.0 .0,0.129 a Listar Multiple Local Buffer Overflow Vulnerabilities (1). CVE-2002-0468. Local exploit for linux platform id EDB-ID:21341 last seen 2016-02-02 modified 2002-02-27 published 2002-02-27 reporter the itch source https://www.exploit-db.com/download/21341/ title Ecartis 1.0.0,0.129 a Listar - Multiple Local Buffer Overflow Vulnerabilities 1 description Ecartis 1.0 .0,0.129 a Listar Multiple Local Buffer Overflow Vulnerabilities (2). CVE-2002-0468. Local exploit for linux platform id EDB-ID:21342 last seen 2016-02-02 modified 2002-02-27 published 2002-02-27 reporter the itch source https://www.exploit-db.com/download/21342/ title Ecartis 1.0.0,0.129 a Listar - Multiple Local Buffer Overflow Vulnerabilities 2
References
- http://marc.info/?l=listar-support&m=101590272221720&w=2
- http://online.securityfocus.com/archive/1/269658
- http://online.securityfocus.com/archive/1/269879
- http://online.securityfocus.com/archive/82/258763
- http://www.ecartis.org/
- http://www.iss.net/security_center/static/8445.php
- http://www.securityfocus.com/archive/1/261209
- http://www.securityfocus.com/bid/4271