Vulnerability Details : CVE-2002-1563
stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter.
Vulnerability category: Denial of service
Products affected by CVE-2002-1563
- cpe:2.3:a:stunnel:stunnel:4.04:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2002-1563
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 23 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2002-1563
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
1.2
|
LOW | AV:L/AC:H/Au:N/C:N/I:N/A:P |
1.9
|
2.9
|
NIST |
References for CVE-2002-1563
-
http://marc.info/?l=bugtraq&m=104247606910598
'SIGCHLD problem in Stunnel' - MARC
-
http://marc.info/?l=bugtraq&m=106029168514511&w=2
'TSLSA-2003-0030 - stunnel' - MARC
-
http://www.redhat.com/support/errata/RHSA-2003-223.html
Support
-
http://www.redhat.com/support/errata/RHSA-2003-221.html
SupportPatch;Vendor Advisory
-
http://www.securityfocus.com/bid/6592
-
http://www.linuxsecurity.com/advisories/engarde_advisory-3535.html
Stay Vigilant with Timely Linux Security Advisories
-
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000736
CONECTIVA | AnĂ¡lises dos Melhores Produtos Online (#10 Melhores)
-
http://marc.info/?l=stunnel-users&m=103600188215117&w=2
'SIGCHLD race in forking stunnel' - MARC
Jump to