Vulnerability Database

296,172

Total vulnerabilities in the database

CVE-2002-1500

Buffer overflow in (1) mrinfo, (2) mtrace, and (3) pppd in NetBSD 1.4.x through 1.6 allows local users to gain privileges by executing the programs after filling the file descriptor tables, which produces file descriptors larger than FD_SETSIZE, which are not checked by FD_SET().

  • Published: Apr 2, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2002-1500
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
netbsd / netbsd 1.5.3 1.5.3.x
netbsd / netbsd 1.4 1.4.x
netbsd / netbsd 1.5 1.5.x
netbsd / netbsd 1.4.2 1.4.2.x
netbsd / netbsd 1.4.1 1.4.1.x
netbsd / netbsd 1.5.1 1.5.1.x
netbsd / netbsd 1.5.2 1.5.2.x
netbsd / netbsd 1.4.3 1.4.3.x