CVE-2002-1503

AFD <1.2.14 - Buffer Overflow

Title source: llm

Description

Buffer overflow in Automatic File Distributor (AFD) 1.2.14 and earlier allows local users to gain privileges via a long MON_WORK_DIR environment variable or -w (workdir) argument to (1) afd, (2) afdcmd, (3) afd_ctrl, (4) init_afd, (5) mafd, (6) mon_ctrl, (7) show_olog, or (8) udc.

Exploits (1)

exploitdb WORKING POC VERIFIED

by eSDee · clocalunix

https://www.exploit-db.com/exploits/21771

View Code ZIP pw:eip

References (4)

[Patch, Vendor Advisory] http://www.iss.net/security_center/static/10036.php

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/5626

[Various Sources] http://www.dwd.de/AFD/txt/CHANGES

[Exploit, Patch, Vendor Advisory] http://archives.neohapsis.com/archives/bugtraq/2002-09/0029.html

Scores

EPSS 0.0023

EPSS Percentile 45.5%

Details

Status published

Products (15)

afd/afd 1.2

afd/afd 1.2.1

afd/afd 1.2.2

afd/afd 1.2.3

afd/afd 1.2.4

afd/afd 1.2.5

afd/afd 1.2.6

afd/afd 1.2.7

afd/afd 1.2.8

afd/afd 1.2.9

... and 5 more

Published Apr 02, 2003

Tracked Since Feb 18, 2026