Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2003-0452
cve-2003-0452
buffer overflows
osh
local code execution
shell restriction bypass
environment variables
file redirections
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Buffer overflows in osh before 1.7-11 allow local users to execute arbitrary code and bypass shell restrictions via (1) long environment variables or (2) long “file redirections.”
Affected configurations
Node
gunnar_ritteroshRange≤1.7-10
| CPE | Name | Operator | Version |
|---|---|---|---|
| gunnar_ritter:osh | gunnar ritter osh | le | 1.7-10 |
References
Related
exploitpack
exploitpack
Operator Shell (osh) 1.7-12 - Local Privilege Escalation
2005-02-05 00:00:00
securityvulns
securityvulns
[UNIX] Buffer Overflow in OSH
2005-02-16 00:00:00
osv
osv
osh - buffer overflows
2003-06-20 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-329)
2008-01-17 00:00:00
Debian Security Advisory DSA 329-1 (osh)
2008-01-17 00:00:00
nvd
nvd
CVE-2003-0452
2003-08-07 04:00:00
cvelist
cvelist
CVE-2003-0452
2022-10-03 16:15:44
seebug
seebug
Operator Shell (osh) 1.7-12 Local Root Exploit
2005-02-05 00:00:00
nessus
nessus
Debian DSA-329-1 : osh - buffer overflows
2004-09-29 00:00:00
exploitdb
exploitdb
Operator Shell (osh) 1.7-12 - Local Privilege Escalation
2005-02-05 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2003-0452