Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2002-0130
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Buffer overflow in efax 0.9 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -x argument.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
EFax "-x"命令选项缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
efax是一个运行于多数Linux发行版本的易于使用的传真工具。efax也可运行在KDE桌面。 efax没有严格检验命令选项参数的边界。特别是-x选项的缓冲区可以被溢出,从而导致内存被覆盖。攻击者可以用此覆盖堆栈变量,例如覆盖返回地址就可以执行用户的指令。 如果efax以setuid root的方式安装,那么这个漏洞可以让本地攻击者提升到root用户的权限。 虽然efax默认不是以setuid root的方式安装,但一些不负责任的用户可能会以setuid root的方式安装。 kde-2.2.1源码包包含
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
-n/a n/a -
II. Public POCs for CVE-2002-0130
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2002-0130
Please Login to view more intelligence information
New Vulnerabilities
Product: n/a
Vendor: n/a
V. Comments for CVE-2002-0130

No comments yet

Leave a comment