CVE-2002-0239
published 2002-05-29CVE-2002-0239: Buffer overflow in hanterm 3.3.1 and earlier allows local users to execute arbitrary code via a long string in the (1) -fn, (2) -hfb, or (3) -hfn argument.
PriorityP421high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.13%
62.3th percentile
Buffer overflow in hanterm 3.3.1 and earlier allows local users to execute arbitrary code via a long string in the (1) -fn, (2) -hfb, or (3) -hfn argument.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hanterm | hanterm | — | — |
| hanterm | hanterm | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Hanterm 3.3 - Local Buffer Overflow (1)
exploitdb·2002-02-07
CVE-2002-0239 Hanterm 3.3 - Local Buffer Overflow (1)
Hanterm 3.3 - Local Buffer Overflow (1)
---
// source: https://www.securityfocus.com/bid/4050/info
Hanterm is a replacement for xterm which includes Hangul support, used for Korean language systems.
A buffer overflow error exists in hanterm. If it is called locally with a maliciously constructed parameter, it is possible to overflow a buffer. This can result in the return address of a stack frame being overwritten, and lead to the execution of arbitrary code.
As hanterm runs suid root on some systems, exploitation of this vulnerability may result in a local root compromise.
/*
**
** How to exploit?
**
** [x82@xpl017elz x82]$ cp /usr/X11R6/bin/hanterm .
** [x82@xpl017elz x82]$ gdb -q hanterm
** (no debugging symbols found)...(gdb) r -display 61.xx.177.27:0 -fn `perl -e
** 'print "x"x8
Exploit-DB
Hanterm 3.3 - Local Buffer Overflow (2)
exploitdb·2002-02-07
CVE-2002-0239 Hanterm 3.3 - Local Buffer Overflow (2)
Hanterm 3.3 - Local Buffer Overflow (2)
---
// source: https://www.securityfocus.com/bid/4050/info
Hanterm is a replacement for xterm which includes Hangul support, used for Korean language systems.
A buffer overflow error exists in hanterm. If it is called locally with a maliciously constructed parameter, it is possible to overflow a buffer. This can result in the return address of a stack frame being overwritten, and lead to the execution of arbitrary code.
As hanterm runs suid root on some systems, exploitation of this vulnerability may result in a local root compromise.
/* hanterm_exp.c
*
* local exploit for hanterm
* .. tested in TurboLinux Server 6.5 (Japan)
*
* thanks my Japanese friend kaju(kaijyu)
* and Japanese hacker UNYUN.
*
* by [email protected]
* 2002/02/07
*/
#includ
No writeups or analysis indexed.
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:41.hanterm.aschttp://marc.info/?l=bugtraq&m=101310874106455&w=2http://online.securityfocus.com/archive/1/255168http://securitytracker.com/id?1001950http://www.debian.org/security/2002/dsa-112http://www.iss.net/security_center/static/8109.phphttp://www.securityfocus.com/bid/4050ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:41.hanterm.aschttp://marc.info/?l=bugtraq&m=101310874106455&w=2http://online.securityfocus.com/archive/1/255168http://securitytracker.com/id?1001950http://www.debian.org/security/2002/dsa-112http://www.iss.net/security_center/static/8109.phphttp://www.securityfocus.com/bid/4050
2002-05-29
Published