Lucene search

MitreCVE-1999-1111

HistoryMar 09, 2002 - 5:00 a.m.

CVE-1999-1111

2002-03-0905:00:00

mitre

web.nvd.nist.gov

stackguard

vulnerability

random canary

terminator canary

non-linear attack

remote attack

cve-1999-1111

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.008

Percentile

82.2%

JSON

Vulnerability in StackGuard before 1.21 allows remote attackers to bypass the Random and Terminator Canary security mechanisms by using a non-linear attack which directly modifies a pointer to a return address instead of using a buffer overflow to reach the return address entry itself.

Affected configurations

Nvd

Node

immunixstackguardRange≤1.21

VendorProductVersionCPE
immunixstackguard*cpe:2.3:a:immunix:stackguard:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
immunix	stackguard	*	cpe:2.3:a:immunix:stackguard::::::::

References

marc.info/?l=bugtraq&m=94218618329838&w=2

www.securityfocus.com/bid/786

exchange.xforce.ibmcloud.com/vulnerabilities/3524

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.008

Percentile

82.2%

JSON

Related for CVE-1999-1111