CVE - CVE-2002-0838

CVE-ID
CVE-2002-0838	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:5808 URL:http://www.securityfocus.com/bid/5808 BUGTRAQ:20020926 Errata: iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv URL:http://marc.info/?l=bugtraq&m=103305778615625&w=2 BUGTRAQ:20020926 iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv URL:http://marc.info/?l=bugtraq&m=103305615613319&w=2 BUGTRAQ:20021017 GLSA: ggv URL:http://marc.info/?l=bugtraq&m=103487806800388&w=2 CALDERA:CSSA-2002-053.0 URL:~~ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt~~ (Obsolete source - check if archived by the Wayback Machine) CERT-VN:VU#600777 URL:http://www.kb.cert.org/vuls/id/600777 CONECTIVA:CLA-2002:542 URL:~~http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000542~~ (Obsolete source - check if archived by the Wayback Machine) CONFIRM:~~http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780&zone_32=category:security~~ (Obsolete source) CONFIRM:http://www.kde.org/info/security/advisory-20021008-1.txt DEBIAN:DSA-176 URL:http://www.debian.org/security/2002/dsa-176 DEBIAN:DSA-179 URL:http://www.debian.org/security/2002/dsa-179 DEBIAN:DSA-182 URL:http://www.debian.org/security/2002/dsa-182 MANDRAKE:MDKSA-2002:069 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2002:069~~ (Obsolete source) MANDRAKE:MDKSA-2002:071 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2002:071~~ (Obsolete source) REDHAT:RHSA-2002:207 URL:http://www.redhat.com/support/errata/RHSA-2002-207.html REDHAT:RHSA-2002:212 URL:http://www.redhat.com/support/errata/RHSA-2002-212.html REDHAT:RHSA-2002:220 URL:http://www.redhat.com/support/errata/RHSA-2002-220.html XF:gv-sscanf-function-bo(10201) URL:~~http://www.iss.net/security_center/static/10201.php~~ (Obsolete source - check if archived by the Wayback Machine)
Assigning CNA
MITRE Corporation
Date Record Created
20020808	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Proposed (20030317)
Votes (Legacy)
ACCEPT(4) Baker, Cole, Frech, Wall MODIFY(1) Cox NOOP(1) Christey
Comments (Legacy)
Cox> Addref: RHSA-2002:211 Christey> GENTOO:GLSA-200408-10 URL:http://www.gentoo.org/security/en/glsa/glsa-200408-10.xml
Proposed (Legacy)
20030317
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)