Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2002-0143

4 documents4 sources
Severity
4.6MEDIUM
EPSS
0.5%
top 32.07%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Enlightenment ImlibMichael Jennings Eterm
Timeline
PublishedMar 25
Latest updateApr 30

Description

Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a long HOME environment variable.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages2 packages

NVDenlightenment/imlib5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-5688-w6cf-9vw9: Buffer overflow in Eterm of Enlightenment Imlib2 12022-04-30
CVEList
CVE-2002-0143: Buffer overflow in Eterm of Enlightenment Imlib2 12002-06-25

💥Exploits & PoCs

1
Exploit-DB
IMLib2 - Home Environment Variable Buffer Overflow2002-01-13
CVE-2002-0143 (MEDIUM CVSS 4.6) | Buffer overflow in Eterm of Enlight | cvebase.io