7.5
CVE-2002-0370
- EPSS 43.3%
- Veröffentlicht 10.10.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:18
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Buffer overflow in the ZIP capability for multiple products allows remote attackers to cause a denial of service or execute arbitrary code via ZIP files containing entries with long filenames, including (1) Microsoft Windows 98 with Plus! Pack, (2) Windows XP, (3) Windows ME, (4) Lotus Notes R4 through R6 (pre-gold), (5) Verity KeyView, and (6) Stuffit Expander before 7.0.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Allume Systems Division ≫ Stuffit Expander Version6.5.2
Ibm ≫ Lotus Notes Version <= 4.5
Ibm ≫ Lotus Notes Version5.0
Ibm ≫ Lotus Notes Version5.0.1
Ibm ≫ Lotus Notes Version5.0.2
Ibm ≫ Lotus Notes Version5.0.3
Ibm ≫ Lotus Notes Version5.0.4
Ibm ≫ Lotus Notes Version5.0.5
Ibm ≫ Lotus Notes Version5.0.9a
Ibm ≫ Lotus Notes Version5.0.10
Ibm ≫ Lotus Notes Version5.0.11
Ibm ≫ Lotus Notes Versionr5
Ibm ≫ Lotus Notes Versionr6
Verity ≫ Keyview Viewing Sdk Versiongold
Microsoft ≫ Windows Xp Editionhome
Microsoft ≫ Windows Xp Updategold Editionprofessional
Microsoft ≫ Windows Xp Updatesp1 Editionhome
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 43.3% | 0.986 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.info.apple.com/usen/security/security_updates.html
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0009.html
http://marc.info/?l=bugtraq&m=103428193409223&w=2
http://securityreason.com/securityalert/587
http://www.info-zip.org/FAQ.html
http://www.iss.net/security_center/static/10251.php
http://www.kb.cert.org/vuls/id/383779
http://www.securityfocus.com/bid/5873
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-054