Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2002-0371
Description:Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response.
Test IDs: 1.3.6.1.4.1.25623.1.0.11305  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2002-0371
BugTraq ID: 4930
http://www.securityfocus.com/bid/4930
Bugtraq: 20020604 Buffer overflow in MSIE gopher code (Google Search)
http://marc.info/?l=bugtraq&m=102320516707940&w=2
Bugtraq: 20020613 Flawed workaround in MS02-027 -- gopher can run on _any_ port, not just 70 (Google Search)
http://online.securityfocus.com/archive/1/276848
Bugtraq: 20020613 Microsoft releases critical fix that breaks their own software! (Google Search)
http://marc.info/?l=bugtraq&m=102397955217618&w=2
CERT/CC vulnerability note: VU#440275
http://www.kb.cert.org/vuls/id/440275
http://www.pivx.com/workaround_fail.html
Microsoft Security Bulletin: MS02-027
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-027
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A98
XForce ISS Database: ie-gopher-bo(9247)
http://www.iss.net/security_center/static/9247.php




© 1998-2024 E-Soft Inc. All rights reserved.