CVE-2002-1247 — Vulnetix

Try Vulnetix Request Demo

CVE-2002-1247 PUBLISHED CVSS 7.199999809265137 HIGH

Buffer overflow in LISa allows local users to gain access to a raw socket via a long LOGNAME environment variable for the resLISa daemon.

EPSS 0.08% · 22.4th percentile

Risk Scores

CVSS v2.0

7.199999809265137

EPSS Score

0.08%

22.4th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
kde	kde	3.0.4, 3.0.2, 3.0.3
kde	klisa	2.2.2
lisa	lisa	0.1, 0.1.2

Timeline

Nov 14, 2002 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

MDKSA-2002:080 vendor-advisory
DSA-193 vendor-advisory
20021114 GLSA: kdelibs mailing-list
20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities mailing-list
20021111 iDEFENSE Security Advisory 11.11.02: Buffer Overflow in KDE resLISa mailing-list
N-020 third-party-advisory
RHSA-2002:220 vendor-advisory
kde-kdenetwork-reslisa-bo(10592) vdb
20021111 iDEFENSE Security Advisory 11.11.02: Buffer Overflow in KDE resLISa mailing-list
http://www.idefense.com/advisory/11.11.02.txt url
6157 vdb
https://nvd.nist.gov/vuln/detail/CVE-2002-1247 advisory

Open in Interactive Console →