7.5

CVE-2002-1306

EPSS 5.54%
Published 29.11.2002 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and (2) remote attackers to execute arbitrary code via a certain "lan://" URL.

Affected products Warnungen 0 Metrics 2 CWE 0 References 13

Data is provided by the National Vulnerability Database (NVD)

Kde ≫ Kde Version2.1

Kde ≫ Kde Version2.1.1

Kde ≫ Kde Version2.1.2

Kde ≫ Kde Version2.2

Kde ≫ Kde Version2.2.1

Kde ≫ Kde Version2.2.2

Kde ≫ Kde Version3.0

Kde ≫ Kde Version3.0.1

Kde ≫ Kde Version3.0.2

Kde ≫ Kde Version3.0.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	5.54%	0.899

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.redhat.com/support/errata/RHSA-2002-220.html

http://marc.info/?l=bugtraq&m=103712329102632&w=2

http://marc.info/?l=bugtraq&m=103728981029342&w=2

http://www.ciac.org/ciac/bulletins/n-020.shtml

http://www.debian.org/security/2002/dsa-214

http://www.iss.net/security_center/static/10597.php

http://www.iss.net/security_center/static/10598.php

Vendor Advisory

http://www.kde.org/info/security/advisory-20021111-2.txt

Patch

Vendor Advisory

http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php

http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html

https://nvd.nist.gov/vuln/detail/CVE-2002-1306

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-1306

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-1306

EUVD