CVE-2002-2099

CVSS 7.2 - HIGH

Description

Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable. NOTE: since DDD is not installed setuid or setgid, perhaps this issue should not be included in CVE.

Affected Products

1

Vendor	Product	Version
gnu	data_display_debugger	`3.3.1`

References

http://securitytracker.com/id?1003241

https://exchange.xforce.ibmcloud.com/vulnerabiliti...

http://securitytracker.com/id?1003241

https://exchange.xforce.ibmcloud.com/vulnerabiliti...

Weakness Types

NVD-CWE-Other

CVE Information

CVE ID:: CVE-2002-2099
Published:: 2002-12-31
Modified:: 2026-04-16
CVSS Score:: 7.2
Severity:: HIGH
Vector:: AV:L/AC:L/Au:N/C:C/I:C/A:C

Affected Vendors

gnu

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL