Lucene search
HistoryMar 03, 2004 - 5:00 a.m.
CVE-2004-0103
cve-2004-0103
crawl
buffer overflow
privilege escalation
nvd
6.6 Medium
AI Score
Confidence
Low
4.6 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
crawl before 4.0.0 beta23 does not properly “apply a size check” when copying a certain environment variable, which may allow local users to gain privileges, possibly as a result of a buffer overflow.
Affected configurations
Node
linley_henzellcrawlRange≤4.0.0_b23
| CPE | Name | Operator | Version |
|---|---|---|---|
| linley_henzell:crawl | linley henzell crawl | le | 4.0.0_b23 |
Related
debiancve
debiancve
CVE-2004-0103
2004-03-03 05:00:00
openvas
openvas
Debian Security Advisory DSA 432-1 (crawl)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-432)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 432-1] New crawl packages fix potential local games exploit
2004-02-03 16:03:01
[SECURITY] [DSA 432-1] New crawl packages fix potential local games exploit
2004-02-03 16:03:01
nessus
nessus
Debian DSA-432-1 : crawl - buffer overflow
2004-09-29 00:00:00
osv
osv
crawl - buffer overflow
2004-02-03 00:00:00
cvelist
cvelist
CVE-2004-0103
2004-02-11 05:00:00
nvd
nvd
CVE-2004-0103
2004-03-03 05:00:00
6.6 Medium
AI Score
Confidence
Low
4.6 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2004-0103