Follow @discotekdotca
CVE-2002-0133
Current Description
Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long string to the telnet proxy.
Basic Data
| Published | March 25, 2002 |
|---|---|
| Last Modified | October 18, 2016 |
| Assigner | cve@mitre.org |
| Data Type | CVE |
| Data Format | MITRE |
| Data Version | 4.0 |
| Problem Type | NVD-CWE-Other |
| CVE Data Version | 4.0 |
Base Metric V2
| CVSS 2 - Version | 2.0 |
|---|---|
| CVSS 2 - Vector String | AV:N/AC:L/Au:N/C:P/I:P/A:P |
| CVSS 2 - Access Vector | NETWORK |
| CVSS 2 - Access Complexity | LOW |
| CVSS 2 - Authentication | NONE |
| CVSS 2 - Confidentiality Impact | PARTIAL |
| CVSS 2 - Availability Impact | PARTIAL |
| CVSS 2 - Base Score | 7.5 |
| Severity | HIGH |
| Exploitability Score | 10.0 |
| Impact Score | 6.4 |
| Obtain All Privilege | false |
| Obtain User Privilege | false |
| Obtain Other Privilege | true |
Base Metric V3
No data provided.
Configurations
-
OR - Configuration 1
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 Application Avirt Avirt Gateway 4.2 * * * * * * * � � � � 2.3 Application Avirt Avirt Gateway Suite 4.2 * * * * * * * � � � � 2.3 Application Avirt Avirt Soho 4.2 * * * * * * * � � � �
Vulnerable Software List
| Vendor | Product | Versions |
|---|---|---|
| Avirt | Avirt Gateway Suite | 4.2 |
| Avirt | Avirt Soho | 4.2 |
| Avirt | Avirt Gateway | 4.2 |
References
| Name | Source | URL | Tags |
|---|---|---|---|
| 20020121 [resend] Avirt Gateway Telnet Vulnerability (and more?) | http://marc.info/?l=bugtraq&m=101164598828092&w=2 | BUGTRAQ | |
| 20020212 Avirt Gateway 4.2 remote buffer overflow: proof of concept | http://marc.info/?l=bugtraq&m=101366658112809&w=2 | BUGTRAQ | |
| 20020220 Avirt 4.2 question | http://marc.info/?l=bugtraq&m=101424723728817&w=2 | BUGTRAQ | |
| 20020117 Avirt Proxy Buffer Overflow Vulnerabilities | http://online.securityfocus.com/archive/1/251055 | BUGTRAQ | Vendor Advisory |
| avirt-http-proxy-bo(7916) | http://www.iss.net/security_center/static/7916.php | XF | Vendor Advisory |
| avirt-telnet-proxy-bo(7918) | http://www.iss.net/security_center/static/7918.php | XF | Vendor Advisory |
| 3904 | http://www.securityfocus.com/bid/3904 | BID | |
| 3905 | http://www.securityfocus.com/bid/3905 | BID |