CVSS: 7.5EPSS: 0%CPEs: 11EXPL: 0CVE-2002-0067
https://notcve.org/view.php?id=CVE-2002-0067
Squid 2.4 STABLE3 and earlier does not properly disable HTCP, even when "htcp_port 0" is specified in squid.conf, which could allow remote attackers to bypass intended access restrictions. Squid 2.4 STABLE2 y versiones anteriores no deshabilita adecuadamente HTCP, incluso cuando ""htcp_port 0"" es especificado en el fichero squid.conf, el cual podría permitir a atacantes remotos saltarse las restricciones de acceso. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:12.squid.asc http://archives.neohapsis.com/archives/linux/caldera/2002-q1/0014.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000464 http://marc.info/?l=bugtraq&m=101431040422095&w=2 http://marc.info/?l=bugtraq&m=101443252627021&w=2 http://www.iss.net/security_center/static/8261.php http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-016.php http://www.osvdb.org/5379 http:/ •
CVSS: 2.6EPSS: 3%CPEs: 11EXPL: 0CVE-2002-0069
https://notcve.org/view.php?id=CVE-2002-0069
Memory leak in SNMP in Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service. Error de memoria en SNMP de Squid STABLE2 y versiones anteriores permite a un atacante remoto provocar una denegación del servicio. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:12.squid.asc http://archives.neohapsis.com/archives/linux/caldera/2002-q1/0014.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000464 http://marc.info/?l=bugtraq&m=101431040422095&w=2 http://marc.info/?l=bugtraq&m=101443252627021&w=2 http://www.iss.net/security_center/static/8260.php http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-016.php http://www.redhat.com/support/errata&#x •
CVSS: 7.5EPSS: 39%CPEs: 11EXPL: 2CVE-2002-0068 – Squid 2.0-4 - Cache FTP Proxy URL Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-0068
Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters. Squid 2.4 STABLE3 y versiones anteriores permite a atacantes remotos causar la denegación de servicios por volcado del núcleo (core dump) y ejecutar código arbitrario mediante una dirección URL ftp:// mal construida. • https://www.exploit-db.com/exploits/21297 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:12.squid.asc http://archives.neohapsis.com/archives/linux/caldera/2002-q1/0014.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000464 http://marc.info/?l=bugtraq&m=101431040422095&w=2 http://marc.info/?l=bugtraq&m=101440163111826&w=2 http://marc.info/?l=bugtraq&m=101443252627021&w=2 http://www.caldera.com/support/security/advisories/CSSA-2002-010&# •
CVSS: 7.2EPSS: 0%CPEs: 28EXPL: 0CVE-2002-0062
https://notcve.org/view.php?id=CVE-2002-0062
Buffer overflow in ncurses 5.0, and the ncurses4 compatibility package as used in Red Hat Linux, allows local users to gain privileges, related to "routines for moving the physical cursor and scrolling." El desbordamiento del búfer en ncurses 5.0, y el paquete de compatibilidad ncurses4 basado en él, permite a usuarios locales la obtención de privilegios. • http://www.debian.org/security/2002/dsa-113 http://www.iss.net/security_center/static/8222.php http://www.redhat.com/support/errata/RHSA-2002-020.html http://www.securityfocus.com/bid/2116 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.2EPSS: 0%CPEs: 46EXPL: 2CVE-2002-0004 – AT 3.1.8 - Formatted Time Heap Overflow
https://notcve.org/view.php?id=CVE-2002-0004
Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice. Corrupción de memoria en el comando "at" permite que usuarios locales ejecuten código arbitrario haciendo uso de un tiempo de ejecución mal escrito (lo que provoca que at libere la misma memoria dos veces). • https://www.exploit-db.com/exploits/21229 http://marc.info/?l=bugtraq&m=101128661602088&w=2 http://marc.info/?l=bugtraq&m=101147632721031&w=2 http://online.securityfocus.com/advisories/3833 http://online.securityfocus.com/advisories/3969 http://www.debian.org/security/2002/dsa-102 http://www.novell.com/linux/security/advisories/2002_003_at_txt.html http://www.redhat.com/support/errata/RHSA-2002-015.html http://www.securityfocus.com/bid/3886 https://exchange.xforce. •