Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2003-0028
HistoryMar 25, 2003 - 5:00 a.m.

CVE-2003-0028

2003-03-2505:00:00
Debian Security Bug Tracker
security-tracker.debian.org
17

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.968 High

EPSS

Percentile

99.7%

JSON

Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391.

Related

nvd 2
cvelist 2
cve 2
openvas 22
debian 15
nessus 20
securityvulns 5
osv 8
suse 2
cert 2
canvas 2
debiancve 1
redhat 1
nvd
nvd
CVE-2003-0028
2003-03-25 05:00:00
CVE-2002-0391
2002-08-12 04:00:00
cvelist
cvelist
CVE-2003-0028
2003-03-21 05:00:00
CVE-2002-0391
2003-04-02 05:00:00
cve
cve
CVE-2003-0028
2003-03-25 05:00:00
CVE-2002-0391
2003-04-02 05:00:00
openvas
openvas
Debian: Security Advisory (DSA-282)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-272)
2008-01-17 00:00:00
Debian Security Advisory DSA 272-1 (dietlibc)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 272-1] New dietlibc packages fix arbitrary code execution
2003-03-28 06:41:48
[SECURITY] [DSA 282-1] New glibc packages fix arbitrary code execution
2003-04-09 11:20:05
[SECURITY] [DSA 272-1] New dietlibc packages fix arbitrary code execution
2003-03-28 06:41:48
nessus
nessus
Mandrake Linux Security Advisory : glibc (MDKSA-2003:037)
2004-07-31 00:00:00
SUSE-SA:2003:027: glibc
2004-07-25 00:00:00
Debian DSA-272-1 : dietlibc - integer overflow
2004-09-29 00:00:00
securityvulns
securityvulns
[RHSA-2003:089-00] Updated glibc packages fix vulnerabilities in RPC XDR decoder
2003-03-20 00:00:00
MITKRB5-SA-2003-003: faulty length checks in xdrmem_getbytes
2003-03-20 00:00:00
CERT Advisory CA-2003-10 Integer overflow in Sun RPC XDR library routines
2003-03-20 00:00:00
osv
osv
glibc - integer overflow
2003-04-09 00:00:00
dietlibc - integer overflow
2002-08-08 00:00:00
dietlibc - integer overflow
2003-03-28 00:00:00
suse
suse
local/remote privilege escalation in glibc
2002-08-30 17:06:11
remote system compromise in glibc
2003-05-27 15:57:34
cert
cert
Integer overflow in Sun RPC XDR library routines
2003-03-19 00:00:00
Integer overflow in xdr_array() function when deserializing the XDR stream
2002-08-01 00:00:00
canvas
canvas
Immunity Canvas: TTDB_XDRARRAY
2002-08-12 04:00:00
Immunity Canvas: CMSD_XDRARRAY
2002-08-12 00:00:00
debiancve
debiancve
CVE-2002-0391
2003-04-02 05:00:00
redhat
redhat
(RHSA-2003:052) krb5 security update
2003-03-27 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.968 High

EPSS

Percentile

99.7%

JSON
Related for DEBIANCVE:CVE-2003-0028
nvd2cvelist2cve2openvas22debian15nessus20securityvulns5osv8suse2cert2canvas2debiancve1redhat1