VYPR
Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026

CVE-2002-2368

CVE-2002-2368

Description

Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function in proxy.c for the SOCKS5 module or (2) the HandleS4Connection function in proxy.c for the SOCKS4 module.

Affected products

2
  • NEC/SOCKS52 versions
    cpe:2.3:a:nec:socks_5:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:nec:socks_5:*:*:*:*:*:*:*:*range: <=1.0r11
    • (no CPE)range: <=1.0 r11

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.