Linux » Linux Kernel : Security Vulnerabilities, CVEs, Published In 2002 CVSS score >= 3
Unspecified vulnerability in the pcilynx ieee1394 firewire driver (pcilynx.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors, related to "wrap handling."
Max CVSS
10.0
EPSS Score
0.40%
Published
2002-12-31
Updated
2008-09-05
Signed integer overflow in the bttv_read function in the bttv driver (bttv-driver.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors.
Max CVSS
10.0
EPSS Score
0.40%
Published
2002-12-31
Updated
2008-09-05
The Network Address Translation (NAT) capability for Netfilter ("iptables") 1.2.6a and earlier leaks translated IP addresses in ICMP error messages.
Max CVSS
7.5
EPSS Score
2.01%
Published
2002-07-26
Updated
2024-02-03
The UDP implementation in Linux 2.4.x kernels keeps the IP Identification field at 0 for all non-fragmented packets, which could allow remote attackers to determine that a target system is running Linux.
Max CVSS
5.0
EPSS Score
0.31%
Published
2002-08-12
Updated
2008-09-05
The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface (lcall).
Max CVSS
3.6
EPSS Score
0.04%
Published
2002-08-12
Updated
2016-10-18
IRC connection tracking helper module in the netfilter subsystem for Linux 2.4.18-pre9 and earlier does not properly set the mask for conntrack expectations for incoming DCC connections, which could allow remote attackers to bypass intended firewall restrictions.
Max CVSS
7.5
EPSS Score
1.32%
Published
2002-03-08
Updated
2017-10-10
Linux kernel, and possibly other operating systems, allows remote attackers to read portions of memory via a series of fragmented ICMP packets that generate an ICMP TTL Exceeded response, which includes portions of the memory in the response packet.
Max CVSS
5.0
EPSS Score
0.51%
Published
2002-01-31
Updated
2017-10-10
7 vulnerabilities found