Lucene search

[email protected]CVE-2003-1407

HistoryOct 20, 2007 - 10:00 a.m.

CVE-2003-1407

2007-10-2010:00:00

CWE-119

[email protected]

web.nvd.nist.gov

buffer overflow

cmd.exe

windows nt 4.0

arbitrary code execution

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.9%

JSON

Buffer overflow in cmd.exe in Windows NT 4.0 may allow local users to execute arbitrary code via a long pathname argument to the cd command.

Affected configurations

NVD

Node

microsoftwindows_ntMatch4.0

CPENameOperatorVersion
microsoft:windows_ntmicrosoft windows nteq4.0

CPE	Name	Operator	Version
microsoft:windows_nt	microsoft windows nt	eq	4.0

References

securityreason.com/securityalert/3251

www.securityfocus.com/archive/1/311359

www.securityfocus.com/bid/6829

exchange.xforce.ibmcloud.com/vulnerabilities/11329

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.9%

JSON

Related for CVE-2003-1407

cvelist1 nvd1