Lucene search

[email protected]CVE-2003-0241

HistoryJun 09, 2003 - 4:00 a.m.

CVE-2003-0241

2003-06-0904:00:00

[email protected]

web.nvd.nist.gov

frontrange goldmine

mail agent

cve-2003-0241

remote code execution

html rendering

ie security

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.0%

JSON

FrontRange GoldMine mail agent 5.70 and 6.00 before 30503 directly sends HTML to the default browser without setting its security zone or otherwise labeling it untrusted, which allows remote attackers to execute arbitrary code via a message that is rendered in IE using a less secure zone.

Affected configurations

NVD

Node

frontrangegoldmineMatch5.70

frontrangegoldmineMatch6.00

CPENameOperatorVersion
frontrange:goldminefrontrange goldmineeq5.70
frontrange:goldminefrontrange goldmineeq6.00

CPE	Name	Operator	Version
frontrange:goldmine	frontrange goldmine	eq	5.70
frontrange:goldmine	frontrange goldmine	eq	6.00

References

archives.neohapsis.com/archives/vulnwatch/2003-q2/0091.html

www.secnap.net/security/gm001.html

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.0%

JSON

Related for CVE-2003-0241

nvd1 securityvulns1 cvelist1