PT-2002-1184 · Boozt · Boozt! Standard

Published

2002-03-25

Updated

2016-10-18

CVE-2002-0098

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Boozt! Standard version 0.9.8

Description The issue is related to a buffer overflow in the index.cgi administration interface. This occurs when a local user creates a new banner with a long name field, allowing the execution of arbitrary code.

Recommendations For Boozt! Standard version 0.9.8, consider updating to a newer version that contains a fix for this issue, as using a long name field when creating a new banner can lead to arbitrary code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0098

Affected Products

Boozt! Standard

PT-2002-1184 · Boozt · Boozt! Standard

CVE-2002-0098

Related Identifiers

Affected Products

References · 7