Search for vulnerabilities
Vulnerability details: VCID-2tth-3gz2-sfc4
Vulnerability ID VCID-2tth-3gz2-sfc4
Aliases CVE-2002-1318
Summary
Status Published
Exploitability 2.0
Weighted Severity 0.7
Risk 1.4
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
epss 0.73412 https://api.first.org/data/v1/epss?cve=CVE-2002-1318
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1318.json
https://api.first.org/data/v1/epss?cve=CVE-2002-1318
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1318
1616871 https://bugzilla.redhat.com/show_bug.cgi?id=1616871
RHSA-2002:266 https://access.redhat.com/errata/RHSA-2002:266
Data source Metasploit
Description This module attempts to exploit a buffer overflow vulnerability present in versions 2.2.2 through 2.2.6 of Samba. The Samba developers report this as: "Bug in the length checking for encrypted password change requests from clients." The bug was discovered and reported by the Debian Samba Maintainers.
Note 
Reliability:
  - unknown-reliability
Stability:
  - unknown-stability
SideEffects:
  - unknown-side-effects
Ransomware campaign use Unknown
Source publication date April 7, 2003
Platform Linux
Source URL https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/multi/samba/nttrans.rb
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.98736
EPSS Score 0.73412
Published At July 31, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T11:28:57.382384+00:00 EPSS Importer Import https://epss.cyentia.com/epss_scores-current.csv.gz 37.0.0