Description
Buffer overflow in traffic_manager for Inktomi Traffic Server 4.0.18 through 5.2.2, Traffic Edge 1.1.2 and 1.5.0, and Media-IXT 3.0.4 allows local users to gain root privileges via a long -path argument.
Products
- Inktomi Media-IXT 3.0.4
- Inktomi Traffic Edge 1.1.2
- Inktomi Traffic Edge 1.5.0
- Inktomi Traffic Server 4.0.18
- Inktomi Traffic Server 4.0.20
- Inktomi Traffic Server 5.1.3
- Inktomi Traffic Server 5.2.0r
- Inktomi Traffic Server 5.2.1
- Inktomi Traffic Server 5.2.2
Questions to Ask Vendors
- Can you confirm whether your systems are affected by CVE-2002-1013, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2002-1013 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions
- Check out the advisory links provided below.
References