Tracesroute
by Ehud Gavron
CVEs (4)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2002-1364 | 0.03 | — | 0.01 | Dec 23, 2002 | Buffer overflow in the get_origin function in traceroute-nanog allows attackers to execute arbitrary code via long WHOIS responses. | ||
| CVE-2002-1387 | 0.00 | — | 0.00 | Jan 2, 2003 | The spray mode in traceroute-nanog (aka traceroute-ng) may allow local users to overwrite arbitrary memory locations via an array index overflow using the nprobes (number of probes) argument. | ||
| CVE-2002-1386 | 0.00 | — | 0.00 | Jan 2, 2003 | Buffer overflow in traceroute-nanog (aka traceroute-ng) may allow local users to execute arbitrary code via a long hostname argument. | ||
| CVE-2002-1051 | 0.00 | — | 0.00 | Oct 4, 2002 | Format string vulnerability in TrACESroute 6.0 GOLD (aka NANOG traceroute) allows local users to execute arbitrary code via the -T (terminator) command line argument. |
- CVE-2002-1364Dec 23, 2002risk 0.03cvss —epss 0.01
Buffer overflow in the get_origin function in traceroute-nanog allows attackers to execute arbitrary code via long WHOIS responses.
- CVE-2002-1387Jan 2, 2003risk 0.00cvss —epss 0.00
The spray mode in traceroute-nanog (aka traceroute-ng) may allow local users to overwrite arbitrary memory locations via an array index overflow using the nprobes (number of probes) argument.
- CVE-2002-1386Jan 2, 2003risk 0.00cvss —epss 0.00
Buffer overflow in traceroute-nanog (aka traceroute-ng) may allow local users to execute arbitrary code via a long hostname argument.
- CVE-2002-1051Oct 4, 2002risk 0.00cvss —epss 0.00
Format string vulnerability in TrACESroute 6.0 GOLD (aka NANOG traceroute) allows local users to execute arbitrary code via the -T (terminator) command line argument.