CVE-2002-0002

N/A Unknown

Published: January 31, 2002 Modified: April 16, 2026

Description

Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows remote malicious servers to execute arbitrary code.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=stunnel-users&m=100869449828705&w=2

Source: cve@mitre.org

http://online.securityfocus.com/archive/1/247427

Source: cve@mitre.org

http://online.securityfocus.com/archive/1/248149

Source: cve@mitre.org

http://stunnel.mirt.net/news.html

Source: cve@mitre.org

Vendor Advisory

http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-004.php3

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2002-002.html

Source: cve@mitre.org

Patch Vendor Advisory

http://www.securityfocus.com/bid/3748

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/7741

Source: cve@mitre.org

http://marc.info/?l=stunnel-users&m=100869449828705&w=2