CVE-2002-1215

Source
https://nvd.nist.gov/vuln/detail/CVE-2002-1215
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2002-1215.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2002-1215
Related
Published
2002-10-28T05:00:00Z
Modified
2025-01-26T23:01:23Z
Summary
[none]
Details

Multiple format string vulnerabilities in heartbeat 0.4.9 and earlier (claimed as buffer overflows in some sources) allow remote attackers to execute arbitrary code via certain packets to UDP port 694 (incorrectly claimed as TCP in some sources).

References

Affected packages

Debian:11 / heartbeat

Package

Name
heartbeat
Purl
pkg:deb/debian/heartbeat?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.9.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / heartbeat

Package

Name
heartbeat
Purl
pkg:deb/debian/heartbeat?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.9.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / heartbeat

Package

Name
heartbeat
Purl
pkg:deb/debian/heartbeat?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.9.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}