CVE Vulnerabilities

CVE-2002-1387

Published: Jan 02, 2003 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The spray mode in traceroute-nanog (aka traceroute-ng) may allow local users to overwrite arbitrary memory locations via an array index overflow using the nprobes (number of probes) argument.

Affected Software

Name Vendor Start Version End Version
Tracesroute Ehud_gavron 6.0 (including) 6.0 (including)
Tracesroute Ehud_gavron 6.1 (including) 6.1 (including)
Tracesroute Ehud_gavron 6.1.1 (including) 6.1.1 (including)

References