7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.055 Low
EPSS
Percentile
93.1%
Stack-based buffer overflow in kkstrtext.h in ktools library 0.3 and
earlier, as used in products such as (1) centericq, (2) orpheus, (3) motor,
and (4) groan, allows local users or remote attackers to execute arbitrary
code via a long parameter to the VGETSTRING macro.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | centericq | < 4.21.0-10 | UNKNOWN |
ubuntu | 6.10 | noarch | centericq | < 4.21.0-10 | UNKNOWN |
ubuntu | 7.04 | noarch | centericq | < 4.21.0-10 | UNKNOWN |
ubuntu | 7.10 | noarch | centerim | < 4.22.1-2.1 | UNKNOWN |
ubuntu | 8.04 | noarch | centerim | < 4.22.1-2.1 | UNKNOWN |
ubuntu | 8.10 | noarch | centerim | < 4.22.1-2.1 | UNKNOWN |
ubuntu | 9.04 | noarch | centerim | < 4.22.1-2.1 | UNKNOWN |
ubuntu | 9.10 | noarch | centerim | < 4.22.1-2.1 | UNKNOWN |
ubuntu | 6.10 | noarch | motor | < 3.4.0-6 | UNKNOWN |
ubuntu | 7.04 | noarch | motor | < 3.4.0-6 | UNKNOWN |