// For flags

CVE-2002-0900

MIT PGP Public Key Server 0.9.2/0.9.4 - Search String Remote Buffer Overflow

Severity Score

7.5
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

2
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Buffer overflow in pks PGP public key web server before 0.9.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long search argument to the lookup capability.

Desbordamiento de búfer en el servidor web de claves públicas pks PGP permite a atacantes remotos causar una denegación de servicio (caída) y posiblemente ejecutar código arbitrario mediante un argumento de búsqueda largo.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2002-05-24 First Exploit
  • 2002-08-16 CVE Reserved
  • 2002-10-04 CVE Published
  • 2024-08-08 CVE Updated
  • 2024-08-10 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Mit
Search vendor "Mit"
 Pgp Public Key Server
Search vendor "Mit" for product "Pgp Public Key Server"
 0.9.2
Search vendor "Mit" for product "Pgp Public Key Server" and version "0.9.2"
-
Affected
Mit
Search vendor "Mit"
 Pgp Public Key Server
Search vendor "Mit" for product "Pgp Public Key Server"
 0.9.4
Search vendor "Mit" for product "Pgp Public Key Server" and version "0.9.4"
-
Affected