Unrated severityNVD Advisory· Published Oct 4, 2002· Updated Apr 16, 2026

CVE-2002-0901

Description

Multiple buffer overflows in Advanced Maryland Automatic Network Disk Archiver (AMANDA) 2.3.0.4 allow (1) remote attackers to execute arbitrary code via long commands to the amindexd daemon, or certain local users to execute arbitrary code via long command line arguments to the programs (2) amcheck, (3) amgetidx, (4) amtrmidx, (5) createindex-dump, or (6) createindex-gnutar.

Affected products

Amanda/Amanda
cpe:2.3:a:amanda:amanda:2.3.0.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.iss.net/security_center/static/9181.phpnvdPatchVendor Advisory
www.iss.net/security_center/static/9182.phpnvdPatchVendor Advisory
www.securityfocus.com/bid/4836nvdPatchVendor Advisory
www.securityfocus.com/bid/4840nvdPatchVendor Advisory
online.securityfocus.com/archive/1/274215nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000