Lucene search
MitreCVE-2003-0084HistoryMay 12, 2003 - 4:00 a.m.
CVE-2003-0084
2003-05-1204:00:00
mitre
web.nvd.nist.gov
28
mod_auth_any
red hat enterprise linux
operating systems
arbitrary command execution
cve-2003-0084
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
High
EPSS
0.004
Percentile
73.3%
mod_auth_any package in Red Hat Enterprise Linux 2.1 and other operating systems does not properly escape arguments when calling other programs, which allows attackers to execute arbitrary commands via shell metacharacters.
Affected configurations
Node
mod_auth_anymod_auth_anyMatch1.2.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mod_auth_any | mod_auth_any | 1.2.2 | cpe:2.3:a:mod_auth_any:mod_auth_any:1.2.2:*:*:*:*:*:*:* |
Related
redhat
redhat
(RHSA-2003:114) mod_auth_any security update
2003-04-28 00:00:00
nvd
nvd
CVE-2003-0084
2003-05-12 04:00:00
nessus
nessus
RHEL 2.1 : mod_auth_any (RHSA-2003:114)
2004-07-06 00:00:00
mod_auth_any for Apache Metacharacter Remote Command Execution
2003-03-26 00:00:00
cvelist
cvelist
CVE-2003-0084
2003-04-29 04:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
High
EPSS
0.004
Percentile
73.3%
Related for CVE-2003-0084