Lucene search

MitreCVE-2003-0099

HistoryMar 03, 2003 - 5:00 a.m.

CVE-2003-0099

2003-03-0305:00:00

mitre

web.nvd.nist.gov

cve-2003-0099

buffer overflow

apcupsd

denial of service

arbitrary code

vsprintf

nvd

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.1

Confidence

Low

EPSS

0.001

Percentile

36.3%

JSON

Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function.

Affected configurations

Nvd

Node

apcapcupsdMatch3.8.5

VendorProductVersionCPE
apcapcupsd3.8.5cpe:2.3:a:apc:apcupsd:3.8.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apc	apcupsd	3.8.5	cpe:2.3:a:apc:apcupsd:3.8.5:::::::*

References

ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-015.0.txt

securitytracker.com/id?1006108

sourceforge.net/project/shownotes.php?release_id=137892

sourceforge.net/project/shownotes.php?release_id=137900

www.debian.org/security/2003/dsa-277

www.iss.net/security_center/static/11491.php

www.mandriva.com/security/advisories?name=MDKSA-2003:018

www.novell.com/linux/security/advisories/2003_022_apcupsd.html

www.securityfocus.com/bid/7200

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.1

Confidence

Low

EPSS

0.001

Percentile

36.3%

JSON

Related for CVE-2003-0099