Lucene search

MitreCVE-2003-0784

HistoryOct 06, 2003 - 4:00 a.m.

CVE-2003-0784

2003-10-0604:00:00

mitre

web.nvd.nist.gov

cve-2003-0784

format string vulnerability

tsm

bos.rte.security

aix 5.2

remote attackers

root privileges

local users

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

Low

EPSS

0.006

Percentile

78.1%

JSON

Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers.

Affected configurations

Nvd

Node

ibmaixMatch4.3.3

ibmaixMatch5.1

ibmaixMatch5.2

VendorProductVersionCPE
ibmaix4.3.3cpe:2.3:o:ibm:aix:4.3.3:*:*:*:*:*:*:*
ibmaix5.1cpe:2.3:o:ibm:aix:5.1:*:*:*:*:*:*:*
ibmaix5.2cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	4.3.3	cpe:2.3:o:ibm:aix:4.3.3:::::::*
ibm	aix	5.1	cpe:2.3:o:ibm:aix:5.1:::::::*
ibm	aix	5.2	cpe:2.3:o:ibm:aix:5.2:::::::*

References

www-1.ibm.com/support/search.wss?rs=0&q=IY47764&apar=only

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

Low

EPSS

0.006

Percentile

78.1%

JSON

Related for CVE-2003-0784