Lucene search

[email protected]CVE-2003-1395

HistoryOct 19, 2007 - 10:00 a.m.

CVE-2003-1395

2007-10-1910:00:00

CWE-119

[email protected]

web.nvd.nist.gov

buffer overflow

kazaa media desktop 2.0

denial of service

remote attackers

arbitrary code

ad server

cve-2003-1395

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

8.3 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.5%

JSON

Buffer overflow in KaZaA Media Desktop 2.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a response to the ad server.

Affected configurations

NVD

Node

kazaakazaa_media_desktopMatch2.0

kazaakazaa_media_desktopMatch2.0.2

CPENameOperatorVersion
kazaa:kazaa_media_desktopkazaa kazaa media desktopeq2.0
kazaa:kazaa_media_desktopkazaa kazaa media desktopeq2.0.2

CPE	Name	Operator	Version
kazaa:kazaa_media_desktop	kazaa kazaa media desktop	eq	2.0
kazaa:kazaa_media_desktop	kazaa kazaa media desktop	eq	2.0.2

References

securityreason.com/securityalert/3252

www.securityfocus.com/archive/1/309935

www.securityfocus.com/bid/6747

exchange.xforce.ibmcloud.com/vulnerabilities/11228

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

8.3 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.5%

JSON

Related for CVE-2003-1395

nvd1 cvelist1