7.5

CVE-2002-0371

EPSS 65.77%
Published 03.07.2002 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response.

Affected products Warnungen 0 Metrics 2 CWE 0 References 12

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Internet Explorer Version5.0.1

Microsoft ≫ Internet Explorer Version5.0.1 Updatesp1

Microsoft ≫ Internet Explorer Version5.0.1 Updatesp2

Microsoft ≫ Internet Explorer Version5.5

Microsoft ≫ Internet Explorer Version5.5 Updatesp1

Microsoft ≫ Internet Explorer Version5.5 Updatesp2

Microsoft ≫ Internet Explorer Version6.0

Microsoft ≫ Isa Server Version2000

Microsoft ≫ Isa Server Version2000 Updatesp1

Microsoft ≫ Proxy Server Version2.0

Microsoft ≫ Proxy Server Version2.0 Updatesp1

University Of Minnesota ≫ Gopher

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	65.77%	0.983

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://marc.info/?l=bugtraq&m=102320516707940&w=2

http://marc.info/?l=bugtraq&m=102397955217618&w=2

http://online.securityfocus.com/archive/1/276848

http://www.iss.net/security_center/static/9247.php

http://www.kb.cert.org/vuls/id/440275

US Government Resource

http://www.pivx.com/workaround_fail.html

http://www.securityfocus.com/bid/4930

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-027

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A98

https://nvd.nist.gov/vuln/detail/CVE-2002-0371

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-0371

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-0371

EUVD