CVE-2003-0977
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.3%
CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.
Affected configurations
References
ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc
ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc
ccvs.cvshome.org/servlets/NewsItemView?newsID=84&JServSessionIdservlets=8u3x1myav1
distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000808
marc.info/?l=bugtraq&m=107168035515554&w=2
marc.info/?l=bugtraq&m=107540163908129&w=2
secunia.com/advisories/10601
www.debian.org/security/2004/dsa-422
www.mandriva.com/security/advisories?name=MDKSA-2003:112
www.redhat.com/support/errata/RHSA-2004-003.html
www.redhat.com/support/errata/RHSA-2004-004.html
exchange.xforce.ibmcloud.com/vulnerabilities/13929
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11528
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A855
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A866
Related
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.3%