Vulnerabilities > CVE-2002-0740 - Unspecified vulnerability in Slrn Development Team Slrn 0.9.6.2/0.9.6.3/0.9.6.4
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN slrn-development-team
exploit available
Summary
Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Exploit-Db
| description | SLRNPull 0.9.6 Spool Directory Command Line Parameter Buffer Overflow Vulnerability. CVE-2002-0740. Local exploit for unix platform |
| id | EDB-ID:21408 |
| last seen | 2016-02-02 |
| modified | 2002-04-22 |
| published | 2002-04-22 |
| reporter | zillion |
| source | https://www.exploit-db.com/download/21408/ |
| title | SLRNPull 0.9.6 Spool Directory Command Line Parameter Buffer Overflow Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0302.html
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0302.html
- http://online.securityfocus.com/archive/1/269667
- http://online.securityfocus.com/archive/1/269667
- http://online.securityfocus.com/archive/1/270235
- http://online.securityfocus.com/archive/1/270235
- http://www.iss.net/security_center/static/8910.php
- http://www.iss.net/security_center/static/8910.php
- http://www.securityfocus.com/bid/4569
- http://www.securityfocus.com/bid/4569