Lucene search

[email protected]CVE-2003-0373

HistoryJun 16, 2003 - 4:00 a.m.

CVE-2003-0373

2003-06-1604:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2003-0373

buffer overflow

nessus

denial of service

arbitrary code execution

nvd

7.8 High

AI Score

Confidence

High

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Multiple buffer overflows in libnasl in Nessus before 2.0.6 allow local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code via (1) a long proto argument to the scanner_add_port function, (2) a long user argument to the ftp_log_in function, (3) a long pass argument to the ftp_log_in function.

CPENameOperatorVersion
nessus:nessusnessusle2.0.5

CPE	Name	Operator	Version
nessus:nessus	nessus	le	2.0.5

References

marc.info/?l=bugtraq&m=105364059803427&w=2

marc.info/?l=bugtraq&m=105369506714849&w=2

www.securityfocus.com/bid/7664

7.8 High

AI Score

Confidence

High

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2003-0373

cve1