Lucene search

MitreCVE-2005-3903

HistoryDec 14, 2005 - 11:03 a.m.

CVE-2005-3903

2005-12-1411:03:00

mitre

web.nvd.nist.gov

cve-2005-3903

buffer overflow

uidadmin

sco unixware

arbitrary code execution

local exploit

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

25.6%

JSON

Buffer overflow in uidadmin in SCO Unixware 7.1.3 and 7.1.4 allows local users to execute arbitrary code via a -S (scheme) argument that specifies a large file, a different vulnerability than CVE-2001-1063.

Affected configurations

Nvd

Node

scounixwareMatch7.1.3

scounixwareMatch7.1.4

VendorProductVersionCPE
scounixware7.1.3cpe:2.3:o:sco:unixware:7.1.3:*:*:*:*:*:*:*
scounixware7.1.4cpe:2.3:o:sco:unixware:7.1.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sco	unixware	7.1.3	cpe:2.3:o:sco:unixware:7.1.3:::::::*
sco	unixware	7.1.4	cpe:2.3:o:sco:unixware:7.1.4:::::::*

References

ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.54

secunia.com/advisories/17986

secunia.com/advisories/18660

securityreason.com/securityalert/251

securitytracker.com/id?1015342

support.avaya.com/elmodocs2/security/ASA-2006-034.htm

www.idefense.com/application/poi/display?id=350&type=vulnerabilities&flashstatus=true

www.securityfocus.com/bid/15811

exchange.xforce.ibmcloud.com/vulnerabilities/23550

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

25.6%

JSON

Related for CVE-2005-3903