{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-11-12T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the \"lisa\" daemon, and (2) remote attackers to execute arbitrary code via a certain \"lan://\" URL."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "MDKSA-2002:080", "tags": ["vendor-advisory", "x_refsource_MANDRAKE"], "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"name": "20021114 GLSA: kdelibs", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"name": "20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"name": "kde-kdenetwork-lisa-bo(10597)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/10597.php"}, {"name": "N-020", "tags": ["third-party-advisory", "government-resource", "x_refsource_CIAC"], "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"name": "kde-kdenetwork-lan-bo(10598)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/10598.php"}, {"name": "DSA-214", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2002/dsa-214"}, {"name": "RHSA-2002:220", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}, {"name": "SuSE-SA:2002:042", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-1306", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the \"lisa\" daemon, and (2) remote attackers to execute arbitrary code via a certain \"lan://\" URL."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "MDKSA-2002:080", "refsource": "MANDRAKE", "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"name": "20021114 GLSA: kdelibs", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"name": "20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"name": "http://www.kde.org/info/security/advisory-20021111-2.txt", "refsource": "CONFIRM", "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"name": "kde-kdenetwork-lisa-bo(10597)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/10597.php"}, {"name": "N-020", "refsource": "CIAC", "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"name": "kde-kdenetwork-lan-bo(10598)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/10598.php"}, {"name": "DSA-214", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2002/dsa-214"}, {"name": "RHSA-2002:220", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}, {"name": "SuSE-SA:2002:042", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T03:19:28.473Z"}, "title": "CVE Program Container", "references": [{"name": "MDKSA-2002:080", "tags": ["vendor-advisory", "x_refsource_MANDRAKE", "x_transferred"], "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"name": "20021114 GLSA: kdelibs", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"name": "20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"name": "kde-kdenetwork-lisa-bo(10597)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/10597.php"}, {"name": "N-020", "tags": ["third-party-advisory", "government-resource", "x_refsource_CIAC", "x_transferred"], "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"name": "kde-kdenetwork-lan-bo(10598)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/10598.php"}, {"name": "DSA-214", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2002/dsa-214"}, {"name": "RHSA-2002:220", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}, {"name": "SuSE-SA:2002:042", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-1306", "datePublished": "2002-11-21T05:00:00", "dateReserved": "2002-11-14T00:00:00", "dateUpdated": "2024-08-08T03:19:28.473Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:kde:kde:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "8C5E480F-A87E-4583-BC75-8596206C0895", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "2EF4C94E-54BB-44DB-BB7D-841419C4D3A1", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "B292C704-EDFA-4060-90DF-0A3906DB0AC9", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "B5DBFB51-48EB-41E5-9712-0A5368EE56A8", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "EEAE9343-7A7F-4CB0-8CEF-52D61BD689C3", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:2.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "3F531972-E0A7-4E7C-A899-3766CEAAE2EF", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "4CEED379-3111-4451-B782-8C66CE568A1C", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "B146FCD3-F6E7-4412-94FD-F9E66089C227", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "99CB51E4-0BFC-4C7C-B9EE-3DBCB0188D73", "vulnerable": true}, {"criteria": "cpe:2.3:o:kde:kde:3.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "C629F0C8-C765-4076-B426-80929F9CE285", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the \"lisa\" daemon, and (2) remote attackers to execute arbitrary code via a certain \"lan://\" URL."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en LISa en KDE 2.x a partir de 2.1, y KDE 3.x anteriores a 3.0.4 permiten \r\na atacantes locales y posiblemente remotos ejecutar c\u00f3digo mediante el demonio \"lisa\", y\r\na atacantes remotos ejecutar c\u00f3digo arbitrario mediante una cierta URL de tipo \"lan://\""}], "id": "CVE-2002-1306", "lastModified": "2016-10-18T02:25:40.810", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-11-29T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=103712329102632&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=103728981029342&w=2"}, {"source": "cve@mitre.org", "url": "http://www.ciac.org/ciac/bulletins/n-020.shtml"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2002/dsa-214"}, {"source": "cve@mitre.org", "url": "http://www.iss.net/security_center/static/10597.php"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/10598.php"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.kde.org/info/security/advisory-20021111-2.txt"}, {"source": "cve@mitre.org", "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php"}, {"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2002:221", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1", "release_date": "2002-12-04T00:00:00Z"}, {"advisory": "RHSA-2002:220", "cpe": "cpe:/o:redhat:linux:7.2", "product_name": "Red Hat Linux 7.2", "release_date": "2002-12-04T00:00:00Z"}, {"advisory": "RHSA-2002:220", "cpe": "cpe:/o:redhat:linux:7.3", "product_name": "Red Hat Linux 7.3", "release_date": "2002-12-04T00:00:00Z"}, {"advisory": "RHSA-2002:220", "cpe": "cpe:/o:redhat:linux:8.0", "product_name": "Red Hat Linux 8.0", "release_date": "2002-12-04T00:00:00Z"}], "bugzilla": {"description": "security flaw", "id": "1616869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616869"}, "csaw": false, "details": ["Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the \"lisa\" daemon, and (2) remote attackers to execute arbitrary code via a certain \"lan://\" URL."], "name": "CVE-2002-1306", "public_date": "2002-11-12T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2002-1306\nhttps://nvd.nist.gov/vuln/detail/CVE-2002-1306"], "threat_severity": "Moderate"}