Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0396

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2003-0396
Last Modified 05 Sep 2008 04:34:12
Published 02 Jul 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0396

Summary

Buffer overflow in les for ATM on Linux (linux-atm) before 2.4.1, if used setuid, allows local users to gain privileges via a long -f command line argument.

Vulnerable Systems

Application

  • Linux-atm 2.4


References

MISC - http://sourceforge.net/project/shownotes.php?release_id=156242

BID - 7437

MISC - http://www.securiteam.com/exploits/5EP0M1P9PO.html

BUGTRAQ - 20030428 ATM on Linux Exploit Code Release (les, local)

XF - atmonlinux-les-command-bo(11903)

BUGTRAQ - 20030524 ATM on linux Exploit(les,local)


Last Updated: 27 May 2016 10:37:53