Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0510

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0510
Last Modified 05 Sep 2008 04:34:30
Published 07 Aug 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0510

Summary

Format string vulnerability in ezbounce 1.0 through 1.50 allows remote attackers to execute arbitrary code via the "sessions" command.

Vulnerable Systems

Application

  • Ezbounce 1.0

  • Ezbounce 1.1

  • Ezbounce 1.10

  • Ezbounce 1.11

  • Ezbounce 1.12

  • Ezbounce 1.13

  • Ezbounce 1.14

  • Ezbounce 1.15

  • Ezbounce 1.16

  • Ezbounce 1.17

  • Ezbounce 1.18

  • Ezbounce 1.19

  • Ezbounce 1.2

  • Ezbounce 1.20

  • Ezbounce 1.21

  • Ezbounce 1.22

  • Ezbounce 1.23

  • Ezbounce 1.24

  • Ezbounce 1.25

  • Ezbounce 1.26

  • Ezbounce 1.27

  • Ezbounce 1.28

  • Ezbounce 1.29

  • Ezbounce 1.3

  • Ezbounce 1.30

  • Ezbounce 1.31

  • Ezbounce 1.32

  • Ezbounce 1.33

  • Ezbounce 1.34

  • Ezbounce 1.35

  • Ezbounce 1.36

  • Ezbounce 1.37

  • Ezbounce 1.38

  • Ezbounce 1.39

  • Ezbounce 1.4

  • Ezbounce 1.40

  • Ezbounce 1.41

  • Ezbounce 1.42

  • Ezbounce 1.43

  • Ezbounce 1.44

  • Ezbounce 1.45

  • Ezbounce 1.46

  • Ezbounce 1.47

  • Ezbounce 1.48

  • Ezbounce 1.49

  • Ezbounce 1.5

  • Ezbounce 1.50

  • Ezbounce 1.6

  • Ezbounce 1.7

  • Ezbounce 1.8

  • Ezbounce 1.9


References

BUGTRAQ - 20030701 ezbounce[v1.0-(1.04a/1.50pre6)]: remote format string exploit.

CONFIRM - http://druglord.freelsd.org/ezbounce/


Last Updated: 27 May 2016 10:37:56