Lucene search

K
cve[email protected]CVE-2003-1228
HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1228

2003-12-3105:00:00
CWE-120
web.nvd.nist.gov
25
cve-2003-1228
buffer overflow
mathopd
denial of service
code execution
security vulnerability
nvd

8.3 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.083 Low

EPSS

Percentile

94.2%

Buffer overflow in the prepare_reply function in request.c for Mathopd 1.2 through 1.5b13, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via an HTTP request with a long path.

CPENameOperatorVersion
mathopd:mathopdmathopdlt1.5

8.3 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.083 Low

EPSS

Percentile

94.2%

Related for CVE-2003-1228