CVE-2002-1889

Off-by-one buffer overflow in the context_action function in context.c of Logsurfer 1.41 through 1.5a allows remote attackers to cause a denial of service (crash) via a malformed log entry.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:logsurfer:logsurfer:1.5:*:*:*:*:*:*:*
cpe:2.3:a:logsurfer:logsurfer:1.5a:*:*:*:*:*:*:*
cpe:2.3:a:logsurfer:logsurfer:1.41:*:*:*:*:*:*:*

History

20 Nov 2024, 23:42

Type Values Removed Values Added
References () ftp://ftp.cert.dfn.de/pub/tools/audit/logsurfer/logsurfer.README.asc - () ftp://ftp.cert.dfn.de/pub/tools/audit/logsurfer/logsurfer.README.asc -
References () http://online.securityfocus.com/archive/1/294131 - () http://online.securityfocus.com/archive/1/294131 -
References () http://www.iss.net/security_center/static/10287.php - Patch () http://www.iss.net/security_center/static/10287.php - Patch
References () http://www.securityfocus.com/bid/5898 - Patch () http://www.securityfocus.com/bid/5898 - Patch

Information

Published : 2002-12-31 05:00

Updated : 2025-04-03 01:03


NVD link : CVE-2002-1889

Mitre link : CVE-2002-1889

CVE.ORG link : CVE-2002-1889


JSON object : View

Products Affected

logsurfer

  • logsurfer