VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Jan 31, 2002· Updated Apr 16, 2026

CVE-2002-0002

CVE-2002-0002

Description

Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows remote malicious servers to execute arbitrary code.

Affected products

25
  • Stunnel/Stunnel22 versions
    cpe:2.3:a:stunnel:stunnel:3.10:*:*:*:*:*:*:*+ 21 more
    • cpe:2.3:a:stunnel:stunnel:3.10:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.11:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.12:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.13:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.14:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.15:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.16:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.17:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.18:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.19:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.20:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.21:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.21a:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.21b:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.21c:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.22:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.24:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.4a:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.7:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.8:*:*:*:*:*:*:*
    • cpe:2.3:a:stunnel:stunnel:3.9:*:*:*:*:*:*:*
  • Trustix/Secure Linux
    cpe:2.3:o:engardelinux:secure_linux:1.0.1:*:*:*:*:*:*:*
  • Mandrakesoft/Mandrake Linux
    cpe:2.3:o:mandrakesoft:mandrake_linux:8.1:*:*:*:*:*:*:*
  • Red Hat/Linux
    cpe:2.3:o:redhat:linux:7.2:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

8

News mentions

0

No linked articles in our index yet.