Lucene search

[email protected]CVE-2003-0197

HistoryApr 11, 2003 - 4:00 a.m.

CVE-2003-0197

2003-04-1104:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

interbase

database security

buffer overflow

privilege escalation

7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK).

CPENameOperatorVersion
firebirdsql:firebirdfirebirdsql firebirdeq1.0.2
borland_software:interbaseborland software interbaseeq6.5
borland_software:interbaseborland software interbaseeq6.4
borland_software:interbaseborland software interbaseeq6.0

CPE	Name	Operator	Version
firebirdsql:firebird	firebirdsql firebird	eq	1.0.2
borland_software:interbase	borland software interbase	eq	6.5
borland_software:interbase	borland software interbase	eq	6.4
borland_software:interbase	borland software interbase	eq	6.0

References

archives.neohapsis.com/archives/vulnwatch/2003-q2/0003.html

marc.info/?l=bugtraq&m=104940730819887&w=2

www.secnetops.com/research/advisories/SRT2003-04-03-1300.txt

7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2003-0197

kaspersky1