Vulnerability Description
Buffer overflow in the preprocessor in groff 1.16 and earlier allows remote attackers to gain privileges via lpd in the LPRng printing system.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnu | Groff | <= 1.16 |
References
- http://online.securityfocus.com/advisories/3793
- http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-012.php
- http://www.redhat.com/support/errata/RHSA-2002-004.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/3869
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7881
- http://online.securityfocus.com/advisories/3793
- http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-012.php
- http://www.redhat.com/support/errata/RHSA-2002-004.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/3869
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7881
FAQ
What is CVE-2002-0003?
CVE-2002-0003 is a vulnerability with a CVSS score of 7.5 (HIGH). Buffer overflow in the preprocessor in groff 1.16 and earlier allows remote attackers to gain privileges via lpd in the LPRng printing system.
How severe is CVE-2002-0003?
CVE-2002-0003 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0003?
Check the references section above for vendor advisories and patch information. Affected products include: Gnu Groff.