Multiple format string vulnerabilities in heartbeat 0.4.9 and earlier (claimed as buffer overflows in some sources) allow remote attackers to execute arbitrary code via certain packets to UDP port 694 (incorrectly claimed as TCP in some sources).
References
Link | Resource |
---|---|
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000540 | |
http://linux-ha.org/security/sec01.txt | |
http://www.debian.org/security/2002/dsa-174 | Patch Vendor Advisory |
http://www.iss.net/security_center/static/10357.php | Vendor Advisory |
http://www.novell.com/linux/security/advisories/2002_037_heartbeat.html | |
http://www.securityfocus.com/bid/5955 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2002-10-21T04:00:00
Updated: 2002-11-10T10:00:00
Reserved: 2002-10-15T00:00:00
Link: CVE-2002-1215
JSON object: View
NVD Information
Status : Analyzed
Published: 2002-10-28T05:00:00.000
Modified: 2008-09-10T19:14:03.837
Link: CVE-2002-1215
JSON object: View
Redhat Information
No data.
CWE