CVE-2002-0740: CVE-2002-0740

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-0740

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

SLRNPull Spool目录命令行参数缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

SLRN是一款免费开放源代码的新闻阅读工具，由SLRN项目组开发和维护。可以运行在Unix和Linux操作系统下。 SLRN对spool目录名命令行参数的边界检查不够充分，可导致攻击者进行缓冲区溢出攻击。 lsrnpull程序默认以setuid root的属性安装，当slrnpull以-d选项执行时，攻击者可以提供超过4091字节的字符串作为spool目录名传递给-d选项，可导致缓冲溢出，精心构建字符串数据可导致获得root权限。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-0740

#	POC Description	Source Link	Shenlong Link
1	SLRNPull Spool Directory Command Line Parameter Buffer Overflow Vulnerability	https://github.com/alt3kx/CVE-2002-0740	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-0740

Please Login to view more intelligence information

http://www.securityfocus.com/bid/4569vdb-entryx_refsource_BID
http://online.securityfocus.com/archive/1/269667mailing-listx_refsource_BUGTRAQ
http://www.iss.net/security_center/static/8910.phpvdb-entryx_refsource_XF
http://archives.neohapsis.com/archives/bugtraq/2002-04/0302.htmlmailing-listx_refsource_BUGTRAQ
http://online.securityfocus.com/archive/1/270235mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-0740

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2002-0740

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2002-0740

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-0740

III. Intelligence Information for CVE-2002-0740

New Vulnerabilities

V. Comments for CVE-2002-0740

Leave a comment