Vulnerabilities > CVE-2002-0552 - Remote Buffer Overflow vulnerability in Melange Chat System 2.0.2Beta2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple buffer overflows in Melange Chat server 2.02 allow remote or local attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long argument in the /yell command, (2) long lines in the /etc/melange.conf configuration file, (3) long file names, or possibly other attacks.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Melange Chat System 2.0.2 Beta 2 /yell Remote Buffer Overflow Vulnerability. CVE-2002-0552. Dos exploits for multiple platform |
| id | EDB-ID:21379 |
| last seen | 2016-02-02 |
| modified | 2002-04-14 |
| published | 2002-04-14 |
| reporter | DVDMAN |
| source | https://www.exploit-db.com/download/21379/ |
| title | Melange Chat System 2.0.2 Beta 2 /yell Remote Buffer Overflow Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0157.html
- http://online.securityfocus.com/archive/1/267932
- http://www.iss.net/security_center/static/8842.php
- http://www.iss.net/security_center/static/8845.php
- http://www.iss.net/security_center/static/8846.php
- http://www.securityfocus.com/bid/4508
- http://www.securityfocus.com/bid/4509
- http://www.securityfocus.com/bid/4510