CVE-2002-1158
canna - buffer overflow and more
EPSS 0.08%
Description
Buffer overflow in the irw_through function for Canna 3.5b2 and earlier allows local users to execute arbitrary code as the bin user.
How to fix CVE-2002-1158
To remediate CVE-2002-1158, upgrade the affected package to a fixed version below.
- Debian/canna—upgrade to 3.6p1-1 or later
- Debian/canna—upgrade to 3.5b2-46.2 or later
Is CVE-2002-1158 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 3.6p1-1
- from 0, < 3.5b2-46.2