Search for vulnerabilities
Vulnerability details: VCID-xqm7-cqbf-aaah
Vulnerability ID VCID-xqm7-cqbf-aaah
Aliases CVE-2002-0657
VC-OPENSSL-20020730-CVE-2002-0657
Summary A buffer overflow when Kerberos is enabled allowed attackers to execute arbitrary code by sending a long master key. Note that this flaw did not affect any released version of 0.9.6 or 0.9.7
Status Published
Exploitability 0.5
Weighted Severity 6.8
Risk 3.4
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.02094 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04408 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04912 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04912 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04912 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04912 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.04912 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
epss 0.09631 https://api.first.org/data/v1/epss?cve=CVE-2002-0657
rhbs unspecified https://bugzilla.redhat.com/show_bug.cgi?id=1616789
cvssv2 7.5 https://nvd.nist.gov/vuln/detail/CVE-2002-0657
Reference id Reference type URL
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.0.txt
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-033.1.txt
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:33.openssl.asc
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000513
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-0657.json
https://api.first.org/data/v1/epss?cve=CVE-2002-0657
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0657
https://www.openssl.org/news/secadv/20020730.txt
http://www.cert.org/advisories/CA-2002-23.html
http://www.iss.net/security_center/static/9715.php
http://www.kb.cert.org/vuls/id/561275
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-046.php
http://www.securityfocus.com/bid/5361
1616789 https://bugzilla.redhat.com/show_bug.cgi?id=1616789
cpe:2.3:a:openssl:openssl:0.9.7:beta1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta1:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:0.9.7:beta2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta2:*:*:*:*:*:*
CVE-2002-0657 https://nvd.nist.gov/vuln/detail/CVE-2002-0657
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2002-0657
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.89436
EPSS Score 0.02094
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.