Vulnerability in N/a
CVE-2002-0371
Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gop…
EPSS: 0.602 (98.3th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 4930 (vdb-entry, x_refsource_BID)
- ie-gopher-bo(9247) (vdb-entry, x_refsource_XF)
- 20020604 Buffer overflow in MSIE gopher code (mailing-list, x_refsource_BUGTRAQ)
- 20020613 Microsoft releases critical fix that breaks their own software! (mailing-list, x_refsource_BUGTRAQ)
- oval:org.mitre.oval:def:98 (signature, x_refsource_OVAL, vdb-entry)
- VU#440275 (x_refsource_CERT-VN, third-party-advisory)
- MS02-027 (x_refsource_MS, vendor-advisory)
- 20020613 Flawed workaround in MS02-027 -- gopher can run on _any_ port, not just 70 (mailing-list, x_refsource_BUGTRAQ)
- www.pivx.com/workaround_fail.html (x_refsource_MISC)