VDB
CVE-2002-0684
CVE-2002-0684
PUBLISHED
Reported by mitre · Published July 31, 2002
Buffer overflow in DNS resolver functions that perform lookup of network names and addresses, as used in BIND 4.9.8 and ported to glibc 2.2.5 and earlier, allows remote malicious DNS servers to execute arbitrary code through a subroutine used by functions such as getnetbyname and getnetbyaddr.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a, * |
Timeline
- Jul 31, 2002 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- MDKSA-2002:050 vendor-advisoryx_refsource_MANDRAKE
- CLSA-2002:507 vendor-advisoryx_refsource_CONECTIVA
- VU#542971 third-party-advisoryx_refsource_CERT-VN
- 20020704 Re: Remote buffer overflow in resolver code of libc mailing-listx_refsource_BUGTRAQ
- RHSA-2002:139 vendor-advisoryx_refsource_REDHAT