VDB
CVE-2002-0180
CVE-2002-0180
PUBLISHED
CVSS 7.5 HIGH
Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname.
EPSS 3.04% · 86.9th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
3.04%
86.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| bradford_barrett | webalizer | 2.0.1.6, 2.0.1.9 |
| n/a | n/a | n/a |
Timeline
- Apr 18, 2002 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 26, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- 20020415 Remote buffer overflow in Webalizer mailing-list
- webalizer-reverse-dns-bo(8837) vdb
- http://www.mrunix.net/webalizer/news.html url
- 4504 vdb
- VU#582923 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2002-0180 advisory