CVE-2002-1391
EPSS 3.7%
Description
Buffer overflow in cnd-program for mgetty before 1.1.29 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a Caller ID string with a long CallerName argument.
How to fix CVE-2002-1391
To remediate CVE-2002-1391, upgrade the affected package to a fixed version below.
- Debian/mgetty—upgrade to 1.1.30-1 or later
Is CVE-2002-1391 being exploited?
Low — EPSS is 3.7%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.1.30-1