Lucene search

[email protected]CVE-2003-1021

HistoryFeb 06, 2005 - 5:00 a.m.

CVE-2003-1021

2005-02-0605:00:00

[email protected]

web.nvd.nist.gov

scosession

openserver

privilege escalation

cve-2003-1021

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.3%

JSON

The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline.

Affected configurations

NVD

Node

scoopenserverMatch5.0

scoopenserverMatch5.0.1

scoopenserverMatch5.0.2

scoopenserverMatch5.0.3

scoopenserverMatch5.0.4

scoopenserverMatch5.0.5

scoopenserverMatch5.0.6

scoopenserverMatch5.0.6a

scoopenserverMatch5.0.7

References

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.5/SCOSA-2005.5.txt

secunia.com/advisories/14012/

www.kb.cert.org/vuls/id/972598

www.securityfocus.com/bid/12372

exchange.xforce.ibmcloud.com/vulnerabilities/19479

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2003-1021

securityvulns1 cvelist1 cert1 nvd1