Lucene search
MitreCVE-2003-0470HistoryAug 07, 2003 - 4:00 a.m.
CVE-2003-0470
2003-08-0704:00:00
mitre
web.nvd.nist.gov
22
cve-2003-0470
buffer overflow
rufsi utility
activex control
remote code execution
symantec security check
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
High
EPSS
0.01
Percentile
83.8%
Buffer overflow in the “RuFSI Utility Class” ActiveX control (aka “RuFSI Registry Information Class”), as used for the Symantec Security Check service, allows remote attackers to execute arbitrary code via a long argument to CompareVersionStrings.
Affected configurations
Node
symantecsecurity_check
| Vendor | Product | Version | CPE |
|---|---|---|---|
| symantec | security_check | * | cpe:2.3:a:symantec:security_check:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2003-0470
2003-06-28 04:00:00
exploitdb
exploitdb
Symantec Security Check RuFSI - ActiveX Control Buffer Overflow
2003-06-23 00:00:00
cert
cert
Symantec ActiveX control vulnerable to buffer overflow
2003-07-21 00:00:00
nvd
nvd
CVE-2003-0470
2003-08-07 04:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
High
EPSS
0.01
Percentile
83.8%
Related for CVE-2003-0470