CVE-2002-1306 - Vulnerability Details

Vendors	Products
Kde	Kde
Redhat	Enterprise Linux Linux

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux AS (Advanced Server) version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2002:221	2002-12-04T00:00:00Z
Red Hat Linux 7.2
	cpe:/o:redhat:linux:7.2	RHSA-2002:220	2002-12-04T00:00:00Z
Red Hat Linux 7.3
	cpe:/o:redhat:linux:7.3	RHSA-2002:220	2002-12-04T00:00:00Z
Red Hat Linux 8.0
	cpe:/o:redhat:linux:8.0	RHSA-2002:220	2002-12-04T00:00:00Z

Link	Providers
http://marc.info/?l=bugtraq&m=103712329102632&w=2
http://marc.info/?l=bugtraq&m=103728981029342&w=2
http://www.ciac.org/ciac/bulletins/n-020.shtml
http://www.debian.org/security/2002/dsa-214
http://www.iss.net/security_center/static/10597.php
http://www.iss.net/security_center/static/10598.php
http://www.kde.org/info/security/advisory-20021111-2.txt
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php
http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html
http://www.redhat.com/support/errata/RHSA-2002-220.html
https://nvd.nist.gov/vuln/detail/CVE-2002-1306
https://www.cve.org/CVERecord?id=CVE-2002-1306

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-11-12T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the \"lisa\" daemon, and (2) remote attackers to execute arbitrary code via a certain \"lan://\" URL."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "MDKSA-2002:080", "tags": ["vendor-advisory", "x_refsource_MANDRAKE"], "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"name": "20021114 GLSA: kdelibs", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"name": "20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"name": "kde-kdenetwork-lisa-bo(10597)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/10597.php"}, {"name": "N-020", "tags": ["third-party-advisory", "government-resource", "x_refsource_CIAC"], "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"name": "kde-kdenetwork-lan-bo(10598)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/10598.php"}, {"name": "DSA-214", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2002/dsa-214"}, {"name": "RHSA-2002:220", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}, {"name": "SuSE-SA:2002:042", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-1306", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the \"lisa\" daemon, and (2) remote attackers to execute arbitrary code via a certain \"lan://\" URL."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "MDKSA-2002:080", "refsource": "MANDRAKE", "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"name": "20021114 GLSA: kdelibs", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"name": "20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"name": "http://www.kde.org/info/security/advisory-20021111-2.txt", "refsource": "CONFIRM", "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"name": "kde-kdenetwork-lisa-bo(10597)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/10597.php"}, {"name": "N-020", "refsource": "CIAC", "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"name": "kde-kdenetwork-lan-bo(10598)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/10598.php"}, {"name": "DSA-214", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2002/dsa-214"}, {"name": "RHSA-2002:220", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}, {"name": "SuSE-SA:2002:042", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T03:19:28.473Z"}, "title": "CVE Program Container", "references": [{"name": "MDKSA-2002:080", "tags": ["vendor-advisory", "x_refsource_MANDRAKE", "x_transferred"], "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"name": "20021114 GLSA: kdelibs", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"name": "20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"name": "kde-kdenetwork-lisa-bo(10597)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/10597.php"}, {"name": "N-020", "tags": ["third-party-advisory", "government-resource", "x_refsource_CIAC", "x_transferred"], "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"name": "kde-kdenetwork-lan-bo(10598)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/10598.php"}, {"name": "DSA-214", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2002/dsa-214"}, {"name": "RHSA-2002:220", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}, {"name": "SuSE-SA:2002:042", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-1306", "datePublished": "2002-11-21T05:00:00", "dateReserved": "2002-11-14T00:00:00", "dateUpdated": "2024-08-08T03:19:28.473Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2002-11-12T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and (2) remote attackers to execute arbitrary code via a certain "lan://" URL. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2016-10-17T13:57:01 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : MDKSA-2002:080 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_MANDRAKE (string)

]

url : http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php (string)

}

1 : { »

name : 20021114 GLSA: kdelibs (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://marc.info/?l=bugtraq&m=103728981029342&w=2 (string)

}

2 : { »

name : 20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://marc.info/?l=bugtraq&m=103712329102632&w=2 (string)

}

3 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://www.kde.org/info/security/advisory-20021111-2.txt (string)

}

4 : { »

name : kde-kdenetwork-lisa-bo(10597) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : http://www.iss.net/security_center/static/10597.php (string)

}

5 : { »

name : N-020 (string)

tags : [ »

0 : third-party-advisory (string)

1 : government-resource (string)

2 : x_refsource_CIAC (string)

]

url : http://www.ciac.org/ciac/bulletins/n-020.shtml (string)

}

6 : { »

name : kde-kdenetwork-lan-bo(10598) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : http://www.iss.net/security_center/static/10598.php (string)

}

7 : { »

name : DSA-214 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_DEBIAN (string)

]

url : http://www.debian.org/security/2002/dsa-214 (string)

}

8 : { »

name : RHSA-2002:220 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

]

url : http://www.redhat.com/support/errata/RHSA-2002-220.html (string)

}

9 : { »

name : SuSE-SA:2002:042 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_SUSE (string)

]

url : http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2002-1306 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and (2) remote attackers to execute arbitrary code via a certain "lan://" URL. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : MDKSA-2002:080 (string)

refsource : MANDRAKE (string)

url : http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php (string)

}

1 : { »

name : 20021114 GLSA: kdelibs (string)

refsource : BUGTRAQ (string)

url : http://marc.info/?l=bugtraq&m=103728981029342&w=2 (string)

}

2 : { »

name : 20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities (string)

refsource : BUGTRAQ (string)

url : http://marc.info/?l=bugtraq&m=103712329102632&w=2 (string)

}

3 : { »

name : http://www.kde.org/info/security/advisory-20021111-2.txt (string)

refsource : CONFIRM (string)

url : http://www.kde.org/info/security/advisory-20021111-2.txt (string)

}

4 : { »

name : kde-kdenetwork-lisa-bo(10597) (string)

refsource : XF (string)

url : http://www.iss.net/security_center/static/10597.php (string)

}

5 : { »

name : N-020 (string)

refsource : CIAC (string)

url : http://www.ciac.org/ciac/bulletins/n-020.shtml (string)

}

6 : { »

name : kde-kdenetwork-lan-bo(10598) (string)

refsource : XF (string)

url : http://www.iss.net/security_center/static/10598.php (string)

}

7 : { »

name : DSA-214 (string)

refsource : DEBIAN (string)

url : http://www.debian.org/security/2002/dsa-214 (string)

}

8 : { »

name : RHSA-2002:220 (string)

refsource : REDHAT (string)

url : http://www.redhat.com/support/errata/RHSA-2002-220.html (string)

}

9 : { »

name : SuSE-SA:2002:042 (string)

refsource : SUSE (string)

url : http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-08T03:19:28.473Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : MDKSA-2002:080 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_MANDRAKE (string)

2 : x_transferred (string)

]

url : http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php (string)

}

1 : { »

name : 20021114 GLSA: kdelibs (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=103728981029342&w=2 (string)

}

2 : { »

name : 20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=103712329102632&w=2 (string)

}

3 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://www.kde.org/info/security/advisory-20021111-2.txt (string)

}

4 : { »

name : kde-kdenetwork-lisa-bo(10597) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : http://www.iss.net/security_center/static/10597.php (string)

}

5 : { »

name : N-020 (string)

tags : [ »

0 : third-party-advisory (string)

1 : government-resource (string)

2 : x_refsource_CIAC (string)

3 : x_transferred (string)

]

url : http://www.ciac.org/ciac/bulletins/n-020.shtml (string)

}

6 : { »

name : kde-kdenetwork-lan-bo(10598) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : http://www.iss.net/security_center/static/10598.php (string)

}

7 : { »

name : DSA-214 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_DEBIAN (string)

2 : x_transferred (string)

]

url : http://www.debian.org/security/2002/dsa-214 (string)

}

8 : { »

name : RHSA-2002:220 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

2 : x_transferred (string)

]

url : http://www.redhat.com/support/errata/RHSA-2002-220.html (string)

}

9 : { »

name : SuSE-SA:2002:042 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_SUSE (string)

2 : x_transferred (string)

]

url : http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2002-1306 (string)

datePublished : 2002-11-21T05:00:00 (string)

dateReserved : 2002-11-14T00:00:00 (string)

dateUpdated : 2024-08-08T03:19:28.473Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:kde:kde:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "8C5E480F-A87E-4583-BC75-8596206C0895", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "2EF4C94E-54BB-44DB-BB7D-841419C4D3A1", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "B292C704-EDFA-4060-90DF-0A3906DB0AC9", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "B5DBFB51-48EB-41E5-9712-0A5368EE56A8", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "EEAE9343-7A7F-4CB0-8CEF-52D61BD689C3", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "3F531972-E0A7-4E7C-A899-3766CEAAE2EF", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "4CEED379-3111-4451-B782-8C66CE568A1C", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "B146FCD3-F6E7-4412-94FD-F9E66089C227", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "99CB51E4-0BFC-4C7C-B9EE-3DBCB0188D73", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:3.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "C629F0C8-C765-4076-B426-80929F9CE285", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the \"lisa\" daemon, and (2) remote attackers to execute arbitrary code via a certain \"lan://\" URL."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en LISa en KDE 2.x a partir de 2.1, y KDE 3.x anteriores a 3.0.4 permiten \r\na atacantes locales y posiblemente remotos ejecutar c\u00f3digo mediante el demonio \"lisa\", y\r\na atacantes remotos ejecutar c\u00f3digo arbitrario mediante una cierta URL de tipo \"lan://\""}], "id": "CVE-2002-1306", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-11-29T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"source": "cve@mitre.org", "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2002/dsa-214"}, {"source": "cve@mitre.org", "url": "http://www.iss.net/security_center/static/10597.php"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/10598.php"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"source": "cve@mitre.org", "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.debian.org/security/2002/dsa-214"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.iss.net/security_center/static/10597.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/10598.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:kde:kde:2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 8C5E480F-A87E-4583-BC75-8596206C0895 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:kde:kde:2.1.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 2EF4C94E-54BB-44DB-BB7D-841419C4D3A1 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:kde:kde:2.1.2:*:*:*:*:*:*:* (string)

matchCriteriaId : B292C704-EDFA-4060-90DF-0A3906DB0AC9 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:kde:kde:2.2:*:*:*:*:*:*:* (string)

matchCriteriaId : B5DBFB51-48EB-41E5-9712-0A5368EE56A8 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:kde:kde:2.2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : EEAE9343-7A7F-4CB0-8CEF-52D61BD689C3 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:kde:kde:2.2.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 3F531972-E0A7-4E7C-A899-3766CEAAE2EF (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:kde:kde:3.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 4CEED379-3111-4451-B782-8C66CE568A1C (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:kde:kde:3.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : B146FCD3-F6E7-4412-94FD-F9E66089C227 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:kde:kde:3.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 99CB51E4-0BFC-4C7C-B9EE-3DBCB0188D73 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:kde:kde:3.0.3:*:*:*:*:*:*:* (string)

matchCriteriaId : C629F0C8-C765-4076-B426-80929F9CE285 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and (2) remote attackers to execute arbitrary code via a certain "lan://" URL. (string)

}

1 : { »

lang : es (string)

value : Múltiples desbordamientos de búfer en LISa en KDE 2.x a partir de 2.1, y KDE 3.x anteriores a 3.0.4 permiten a atacantes locales y posiblemente remotos ejecutar código mediante el demonio "lisa", y a atacantes remotos ejecutar código arbitrario mediante una cierta URL de tipo "lan://" (string)

}

]

id : CVE-2002-1306 (string)

lastModified : 2025-04-03T01:03:51.193 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : HIGH (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 7.5 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:N/AC:L/Au:N/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : true (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2002-11-29T05:00:00.000 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

url : http://marc.info/?l=bugtraq&m=103712329102632&w=2 (string)

}

1 : { »

source : cve@mitre.org (string)

url : http://marc.info/?l=bugtraq&m=103728981029342&w=2 (string)

}

2 : { »

source : cve@mitre.org (string)

url : http://www.ciac.org/ciac/bulletins/n-020.shtml (string)

}

3 : { »

source : cve@mitre.org (string)

url : http://www.debian.org/security/2002/dsa-214 (string)

}

4 : { »

source : cve@mitre.org (string)

url : http://www.iss.net/security_center/static/10597.php (string)

}

5 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://www.iss.net/security_center/static/10598.php (string)

}

6 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://www.kde.org/info/security/advisory-20021111-2.txt (string)

}

7 : { »

source : cve@mitre.org (string)

url : http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php (string)

}

8 : { »

source : cve@mitre.org (string)

url : http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html (string)

}

9 : { »

source : cve@mitre.org (string)

url : http://www.redhat.com/support/errata/RHSA-2002-220.html (string)

}

10 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://marc.info/?l=bugtraq&m=103712329102632&w=2 (string)

}

11 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://marc.info/?l=bugtraq&m=103728981029342&w=2 (string)

}

12 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.ciac.org/ciac/bulletins/n-020.shtml (string)

}

13 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.debian.org/security/2002/dsa-214 (string)

}

14 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.iss.net/security_center/static/10597.php (string)

}

15 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://www.iss.net/security_center/static/10598.php (string)

}

16 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://www.kde.org/info/security/advisory-20021111-2.txt (string)

}

17 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php (string)

}

18 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html (string)

}

19 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.redhat.com/support/errata/RHSA-2002-220.html (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-Other (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"affected_release": [{"advisory": "RHSA-2002:221", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1", "release_date": "2002-12-04T00:00:00Z"}, {"advisory": "RHSA-2002:220", "cpe": "cpe:/o:redhat:linux:7.2", "product_name": "Red Hat Linux 7.2", "release_date": "2002-12-04T00:00:00Z"}, {"advisory": "RHSA-2002:220", "cpe": "cpe:/o:redhat:linux:7.3", "product_name": "Red Hat Linux 7.3", "release_date": "2002-12-04T00:00:00Z"}, {"advisory": "RHSA-2002:220", "cpe": "cpe:/o:redhat:linux:8.0", "product_name": "Red Hat Linux 8.0", "release_date": "2002-12-04T00:00:00Z"}], "bugzilla": {"description": "security flaw", "id": "1616869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616869"}, "csaw": false, "details": ["Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the \"lisa\" daemon, and (2) remote attackers to execute arbitrary code via a certain \"lan://\" URL."], "name": "CVE-2002-1306", "public_date": "2002-11-12T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2002-1306\nhttps://nvd.nist.gov/vuln/detail/CVE-2002-1306"], "threat_severity": "Moderate"}

{

affected_release : [ »

0 : { »

advisory : RHSA-2002:221 (string)

cpe : cpe:/o:redhat:enterprise_linux:2.1 (string)

product_name : Red Hat Enterprise Linux AS (Advanced Server) version 2.1 (string)

release_date : 2002-12-04T00:00:00Z (string)

}

1 : { »

advisory : RHSA-2002:220 (string)

cpe : cpe:/o:redhat:linux:7.2 (string)

product_name : Red Hat Linux 7.2 (string)

release_date : 2002-12-04T00:00:00Z (string)

}

2 : { »

advisory : RHSA-2002:220 (string)

cpe : cpe:/o:redhat:linux:7.3 (string)

product_name : Red Hat Linux 7.3 (string)

release_date : 2002-12-04T00:00:00Z (string)

}

3 : { »

advisory : RHSA-2002:220 (string)

cpe : cpe:/o:redhat:linux:8.0 (string)

product_name : Red Hat Linux 8.0 (string)

release_date : 2002-12-04T00:00:00Z (string)

}

]

bugzilla : { »

description : security flaw (string)

id : 1616869 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=1616869 (string)

}

csaw : false (boolean)

details : [ »

0 : Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and (2) remote attackers to execute arbitrary code via a certain "lan://" URL. (string)

]

name : CVE-2002-1306 (string)

public_date : 2002-11-12T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2002-1306 https://nvd.nist.gov/vuln/detail/CVE-2002-1306 (string)

]

threat_severity : Moderate (string)

}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object