CVE-2002-0468

high

Description

Buffer overflows in Ecartis (formerly Listar) 1.0.0 in snapshot 20020427 and earlier allow local users to gain privileges via (1) a long command line argument, which is not properly handled in core.c, or possibly via bad uses of sprintf() in (2) moderate.c, (3) lcgi.c, (4) fileapi.c, (5) cookie.c, (6) codes.c, or other files.

References

http://www.securityfocus.com/bid/4271

http://www.securityfocus.com/archive/1/261209

http://www.iss.net/security_center/static/8445.php

http://www.ecartis.org/

http://online.securityfocus.com/archive/82/258763

http://online.securityfocus.com/archive/1/269879

http://online.securityfocus.com/archive/1/269658

http://marc.info/?l=listar-support&m=101590272221720&w=2

Details

Source: Mitre, NVD

Published: 2002-08-12

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00527