CVE-2002-1420: CVE-2002-1420

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-1420

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer signedness error in select() on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a data copying operation.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenBSD select系统调用本地缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenBSD是加拿大OpenBSD项目组开发的一套跨平台的、基于BSD的类UNIX操作系统。 OpenBSD的select调用对缓冲边界缺少正确检查，本地攻击者可以利用这个漏洞进行缓冲区溢出攻击。 select调用中不充分的缓冲区边界检查允许攻击者覆盖内核内存，并以内核权限执行任意代码。传统情况下，select系统调用的大小参数定义为一个有符号整数，这样内核会以有符号整数的范围来检查边界缓冲区长度，因此当攻击者使用负数时就会绕过边界检查。然而当内核为select系统调用从用户空间拷贝数据时，其大小却是

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-1420

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-1420

Please Login to view more intelligence information

http://www.osvdb.org/7554vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/5442vdb-entryx_refsource_BID
http://www.kb.cert.org/vuls/id/259787third-party-advisoryx_refsource_CERT-VN
http://www.iss.net/security_center/static/9809.phpvdb-entryx_refsource_XF
http://marc.info/?l=bugtraq&m=102918817012863&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-1420

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2002-1420

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2002-1420

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-1420

III. Intelligence Information for CVE-2002-1420

New Vulnerabilities

V. Comments for CVE-2002-1420

Leave a comment