Lucene search
HistoryNov 05, 2005 - 11:02 a.m.
CVE-2005-3503
cve-2005-3503
chfn
pwdutils 3.0.4
suse linux
privilege escalation
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
0.4%
chfn in pwdutils 3.0.4 and earlier on SuSE Linux, and possibly other operating systems, does not properly check arguments for the GECOS field, which allows local users to gain privileges.
Affected configurations
Node
pwdutilspwdutilsRange≤3.0.4suse_linux
| CPE | Name | Operator | Version |
|---|---|---|---|
| pwdutils:pwdutils | pwdutils | le | 3.0.4 |
Related
nvd
nvd
CVE-2005-3503
2005-11-05 11:02:00
suse
suse
local privilege escalation in pwdutils, shadow
2005-11-04 14:22:08
canvas
canvas
Immunity Canvas: CHFNESCAPE
2005-11-05 11:02:00
ubuntucve
ubuntucve
CVE-2005-3503
2005-11-05 00:00:00
cvelist
cvelist
CVE-2005-3503
2005-11-05 11:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
0.4%
Related for CVE-2005-3503