Lucene search

[email protected]NVD:CVE-2003-0434

HistoryJul 24, 2003 - 4:00 a.m.

CVE-2003-0434

2003-07-2404:00:00

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.051 Low

EPSS

Percentile

93.0%

JSON

Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink.

Affected configurations

NVD

Node

adobeacrobatMatch5.0.6

xpdfxpdfMatch1.1

Node

mandrakesoftmandrake_linuxMatch9.0

mandrakesoftmandrake_linuxMatch9.1

mandrakesoftmandrake_linux_corporate_serverMatch2.1

redhatenterprise_linuxMatch2.1advanced_server

redhatenterprise_linuxMatch2.1enterprise_server

redhatenterprise_linuxMatch2.1workstation

redhatlinuxMatch7.1

redhatlinuxMatch7.2

redhatlinuxMatch7.3

redhatlinuxMatch8.0

redhatlinuxMatch9.0

redhatlinux_advanced_workstationMatch2.1itanium

References

lists.grok.org.uk/pipermail/full-disclosure/2003-June/005719.html

marc.info/?l=bugtraq&m=105777963019186&w=2

secunia.com/advisories/9037

secunia.com/advisories/9038

www.kb.cert.org/vuls/id/200132

www.mandriva.com/security/advisories?name=MDKSA-2003:071

www.redhat.com/support/errata/RHSA-2003-196.html

www.redhat.com/support/errata/RHSA-2003-197.html

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A664

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.051 Low

EPSS

Percentile

93.0%

JSON

Related for NVD:CVE-2003-0434

cve1 nessus2 redhat1 cert1 cvelist1 debiancve1