| Vulnerability Name: | CVE-2003-0441 (CCN-12381) | ||||||||
| Assigned: | 2003-06-19 | ||||||||
| Published: | 2003-06-19 | ||||||||
| Updated: | 2017-07-11 | ||||||||
| Summary: | Multiple buffer overflows in Orville Write (orville-write) 2.53 and earlier allow local users to gain privileges. | ||||||||
| CVSS v3 Severity: | 9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Privileges | ||||||||
| References: | Source: CCN Type: Debian Bug report logs - #170747 orville-write: Improper use of environmental variables may allow local root compromise. Source: MITRE Type: CNA CVE-2003-0441 Source: DEBIAN Type: Patch, Vendor Advisory DSA-326 Source: DEBIAN Type: DSA-326 orville-write -- buffer overflows Source: CCN Type: OSVDB ID: 6679 Orville Write orville-write amin.c Local Overflow Source: CCN Type: OSVDB ID: 6680 Orville Write orville-write wrt_me.c Local Overflow Source: CCN Type: OSVDB ID: 6681 Orville Write orville-write wrt_type.c Local Overflow Source: BID Type: Patch, Vendor Advisory 7988 Source: CCN Type: BID-7988 Orville-Write Multiple Unspecified Buffer Overrun Vulnerabilities Source: CCN Type: Orville write Web site Jan Wolter's Unix Write Program Source: XF Type: UNKNOWN orvillewrite-variables-bo(12381) Source: XF Type: UNKNOWN orvillewrite-variables-bo(12381) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||