Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0333

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2003-0333
Last Modified 05 Sep 2008 04:34:03
Published 19 May 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0333

Summary

Multiple buffer overflows in kermit in HP-UX 10.20 and 11.00 (C-Kermit 6.0.192 and possibly other versions before 8.0) allow local users to gain privileges via long arguments to (1) ask, (2) askq, (3) define, (4) assign, and (5) getc, some of which may share the same underlying function "doask," a different vulnerability than CVE-2001-0085.

Vulnerable Systems

Operating System

  • Hp-ux 10.20

  • Hp-ux 11.00


References

CERT-VN - VU#971364

BUGTRAQ - 20030502 Re: from bugtraq: HP-UX 11.0 /usr/bin/kermit (fwd)

XF - hp-ckermit-bo(11929)

BID - 7627

BUGTRAQ - 20030502 HP-UX 11.0 /usr/bin/kermit


Last Updated: 27 May 2016 10:37:52