CVE Vulnerabilities

CVE-2002-1387

Published: Jan 02, 2003 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The spray mode in traceroute-nanog (aka traceroute-ng) may allow local users to overwrite arbitrary memory locations via an array index overflow using the nprobes (number of probes) argument.

Affected Software

Name Vendor Start Version End Version
Tracesroute Ehud_gavron 6.0 6.0
Tracesroute Ehud_gavron 6.1 6.1
Tracesroute Ehud_gavron 6.1.1 6.1.1

References