Lucene search

[email protected]CVE-2003-0434

HistoryJul 24, 2003 - 4:00 a.m.

CVE-2003-0434

2003-07-2404:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2003-0434

pdf viewers

remote code execution

embedded hyperlink

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.051 Low

EPSS

Percentile

92.9%

JSON

Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink.

CPENameOperatorVersion
adobe:acrobatadobe acrobateq5.0.6
xpdf:xpdfxpdfeq1.1
mandrakesoft:mandrake_linux_corporate_servermandrakesoft mandrake linux corporate servereq2.1
redhat:enterprise_linuxredhat enterprise linuxeq2.1
redhat:linux_advanced_workstationredhat linux advanced workstationeq2.1
redhat:linuxredhat linuxeq7.2
redhat:linuxredhat linuxeq8.0
redhat:linuxredhat linuxeq7.3
mandrakesoft:mandrake_linuxmandrakesoft mandrake linuxeq9.0
redhat:linuxredhat linuxeq9.0

CPE	Name	Operator	Version
adobe:acrobat	adobe acrobat	eq	5.0.6
xpdf:xpdf	xpdf	eq	1.1
mandrakesoft:mandrake_linux_corporate_server	mandrakesoft mandrake linux corporate server	eq	2.1
redhat:enterprise_linux	redhat enterprise linux	eq	2.1
redhat:linux_advanced_workstation	redhat linux advanced workstation	eq	2.1
redhat:linux	redhat linux	eq	7.2
redhat:linux	redhat linux	eq	8.0
redhat:linux	redhat linux	eq	7.3
mandrakesoft:mandrake_linux	mandrakesoft mandrake linux	eq	9.0
redhat:linux	redhat linux	eq	9.0

Rows per page:

1-10 of 121

References

lists.grok.org.uk/pipermail/full-disclosure/2003-June/005719.html

marc.info/?l=bugtraq&m=105777963019186&w=2

secunia.com/advisories/9037

secunia.com/advisories/9038

www.kb.cert.org/vuls/id/200132

www.mandriva.com/security/advisories?name=MDKSA-2003:071

www.redhat.com/support/errata/RHSA-2003-196.html

www.redhat.com/support/errata/RHSA-2003-197.html

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A664

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.051 Low

EPSS

Percentile

92.9%

JSON

Related for CVE-2003-0434

nessus2 cert1 debiancve1 redhat1 cvelist1