CVE: CVE-2003-0333 - CVE-Search

CVE Details for CVE: CVE-2003-0333

Summary

Multiple buffer overflows in kermit in HP-UX 10.20 and 11.00 (C-Kermit 6.0.192 and possibly other versions before 8.0) allow local users to gain privileges via long arguments to (1) ask, (2) askq, (3) define, (4) assign, and (5) getc, some of which may share the same underlying function "doask," a different vulnerability than CVE-2001-0085.

Timestamps
Last major update	11-07-2017 - 01:29
Published	19-05-2003 - 04:00
Last modified	11-07-2017 - 01:29

References

Vulnerable Configurations

cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*

CAPEC

Click the CAPEC title to display a description

CWE

NVD-CWE-Other

CVSS

Base

7.2

Impact

10.0

Exploitability

3.9

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

CVSS3

None

VIA4 references

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	7627
bugtraq	20030502 HP-UX 11.0 /usr/bin/kermit 20030502 Re: from bugtraq: HP-UX 11.0 /usr/bin/kermit (fwd)
cert-vn	VU#971364
hp	HPSBUX0305-259
xf	hp-ckermit-bo(11929)