CVE-2002-0871 — Xinetd vulnerability

6 documents6 sources

Severity

2.1LOWNVD

EPSS

0.1%

top 71.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Xinetd Debian Xinetd

Timeline

PublishedSep 5

Latest updateApr 30

Description

xinetd 2.3.4 leaks file descriptors for the signal pipe to services that are launched by xinetd, which could allow those services to cause a denial of service via the pipe.

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/xinetd< xinetd 1:2.3.7-1 (bookworm)

▶Debianxinetd/xinetd< 1:2.3.7-1+3

▶NVDxinetd/xinetd2.3.4, 2.3.5, 2.3.6+2

🔴Vulnerability Details

GHSA

GHSA-9fx2-wwqg-fcg7: xinetd 2↗2022-04-30

▶

OSV

CVE-2002-0871: xinetd 2↗2002-09-05

▶

📋Vendor Advisories

Red Hat

security flaw↗2002-08-13

▶

Debian

CVE-2002-0871: xinetd - xinetd 2.3.4 leaks file descriptors for the signal pipe to services that are lau...↗2002

▶

💬Community

Bugzilla

CVE-2002-0871 security flaw↗2018-08-16

▶