Lucene search

[email protected]CVE-2005-1393

HistoryMay 03, 2005 - 4:00 a.m.

CVE-2005-1393

2005-05-0304:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

arcgis

esri

arcinfo

buffer overflow

cve-2005-1393

security

nvd

8.4 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Multiple buffer overflows in ArcGIS for ESRI ArcInfo Workstation 9.0 allow local users to execute arbitrary code via long command line arguments to (1) asmaster, (2) asuser, (3) asutility, (4) se, or (5) asrecovery.

CPENameOperatorVersion
esri:arcinfo_workstationesri arcinfo workstationeq9.0

CPE	Name	Operator	Version
esri:arcinfo_workstation	esri arcinfo workstation	eq	9.0

References

marc.info/?l=full-disclosure&m=111489411524630&w=2

secunia.com/advisories/15196

securitytracker.com/id?1013852

support.esri.com/index.cfm?fa=downloads.patchesServicePacks.viewPatch&PID=14&MetaID=1015

www.digitalmunition.com/DMA%5B2005-0425a%5D.txt

8.4 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON