Lucene search

[email protected]CVE-2003-0325

HistoryJun 09, 2003 - 4:00 a.m.

CVE-2003-0325

2003-06-0904:00:00

[email protected]

web.nvd.nist.gov

cve-2003-0325

buffer overflow

maelstrom

security vulnerability

arbitrary code execution

nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

0.4%

JSON

Buffer overflow in Maelstrom 3.0.6, 3.0.5, and earlier allows local users to execute arbitrary code via a long -server command line argument.

Affected configurations

NVD

Node

ambrosia_softwaremaelstromRange≤3.0.5

ambrosia_softwaremaelstromMatch3.0.6

CPENameOperatorVersion
ambrosia_software:maelstromambrosia software maelstromle3.0.5
ambrosia_software:maelstromambrosia software maelstromeq3.0.6

CPE	Name	Operator	Version
ambrosia_software:maelstrom	ambrosia software maelstrom	le	3.0.5
ambrosia_software:maelstrom	ambrosia software maelstrom	eq	3.0.6

References

marc.info/?l=bugtraq&m=105337792703887&w=2

marc.info/?l=bugtraq&m=105344501331344&w=2

marc.info/?l=bugtraq&m=105346309123217&w=2

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2003-0325

cvelist1 nvd1 debiancve1