CVE-2002-0587

{"id": "CVE-2002-0587", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2002-06-18T04:00:00.000", "references": [{"url": "http://archives.neohapsis.com/archives/bugtraq/2002-04/0195.html", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/aolserver/aolserver/nspd/log.c.diff?r1=1.4&r2=1.4.6.1", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/tracker/index.php?func=detail&aid=533141&group_id=3152&atid=303152", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in Ns_PdLog function for the external database driver proxy daemon library (libnspd.a) of AOLServer 3.0 through 3.4.2 allows remote attackers to cause a denial of service or execute arbitrary code via the Error or Notice parameters."}], "lastModified": "2008-09-05T20:28:25.163", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:aol:aol_server:3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E02E404B-8361-4531-A732-DFDA0762E7CD"}, {"criteria": "cpe:2.3:a:aol:aol_server:3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4F8E77A-603D-42F3-93F1-69851F791C4A"}, {"criteria": "cpe:2.3:a:aol:aol_server:3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "817E4138-D68E-47A8-AD73-3BC27201999F"}, {"criteria": "cpe:2.3:a:aol:aol_server:3.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "699C682E-674A-47EE-AE03-9AB41351D14C"}, {"criteria": "cpe:2.3:a:aol:aol_server:3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD496C02-BA3B-4BEB-82C4-3F8D4A524920"}, {"criteria": "cpe:2.3:a:aol:aol_server:3.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA118AF0-1883-45BB-B9E6-01D04E5B67E0"}, {"criteria": "cpe:2.3:a:aol:aol_server:3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A64990D8-CEED-400D-A2BB-478C8E8CD868"}, {"criteria": "cpe:2.3:a:aol:aol_server:3.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E143C7F6-3AAE-4E55-804B-CEF0EE809960"}, {"criteria": "cpe:2.3:a:aol:aol_server:3.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C219CB1A-0283-4B5B-B73F-576A0F07499A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}