5 - CVE-2003-0001

Executive Summary

Informations
Name	CVE-2003-0001	First vendor Publication	2003-01-17
Vendor	Cve	Last vendor Modification	2019-04-30

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0001

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-200	Information Exposure

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:2665

Oval ID:	oval:org.mitre.oval:def:2665
Title:	Data Leak in NIC
Description:	Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2003-0001	Version:	1
Platform(s):	Sun Solaris 7	Product(s):	Sun Am7990 Ethernet Driver
Definition Synopsis:
Software section Solaris 7,8,or 9 installed Solaris 8 Installed AND Solaris 7 Installed AND Solaris 9 Installed AND NOT Patch 112604-02 or later installed AND NOT Patch 112609-02 or later installed AND NOT Patch 115172-01 or later installed AND Configuration section Lance Ethernet (le) interface configured to start AND Lance Ethernet interface in use

Definition Id: oval:org.mitre.oval:def:28706

Oval ID:	oval:org.mitre.oval:def:28706
Title:	Critical Patch Update January 2015
Description:	Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2003-0001	Version:	3
Platform(s):	Sun Solaris 10	Product(s):
Definition Synopsis:
Solaris 10 (x86) is installed AND NOT Patch 125907-02 or later installed

CPE : Common Platform Enumeration

Type	Description	Count
Os	Freebsd cpe:2.3:o:freebsd:freebsd:4.7:-:::::: cpe:2.3:o:freebsd:freebsd:4.6:-:::::: cpe:2.3:o:freebsd:freebsd:4.5:-:::::: cpe:2.3:o:freebsd:freebsd:4.4:-:::::: cpe:2.3:o:freebsd:freebsd:4.3:-:::::: cpe:2.3:o:freebsd:freebsd:4.2:::::::*	6
Os	Linux Linux Kernel cpe:2.3:o:linux:linux_kernel:2.4.9:::::::* cpe:2.3:o:linux:linux_kernel:2.4.8:::::::* cpe:2.3:o:linux:linux_kernel:2.4.7:::::::* cpe:2.3:o:linux:linux_kernel:2.4.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.3:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.20:::::::* cpe:2.3:o:linux:linux_kernel:2.4.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.19:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.17:::::::* cpe:2.3:o:linux:linux_kernel:2.4.16:::::::* cpe:2.3:o:linux:linux_kernel:2.4.15:::::::* cpe:2.3:o:linux:linux_kernel:2.4.14:::::::* cpe:2.3:o:linux:linux_kernel:2.4.13:::::::* cpe:2.3:o:linux:linux_kernel:2.4.12:::::::* cpe:2.3:o:linux:linux_kernel:2.4.11:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.10:::::::* cpe:2.3:o:linux:linux_kernel:2.4.1:::::::*	20
Os	Microsoft Windows 2000 cpe:2.3:o:microsoft:windows_2000::sp1::::::* cpe:2.3:o:microsoft:windows_2000::sp2::::::* cpe:2.3:o:microsoft:windows_2000::::::::	3
Os	Microsoft Windows 2000 Terminal Services cpe:2.3:o:microsoft:windows_2000_terminal_services:::::::: cpe:2.3:o:microsoft:windows_2000_terminal_services::sp1::::::* cpe:2.3:o:microsoft:windows_2000_terminal_services::sp2::::::*	3
Os	Netbsd cpe:2.3:o:netbsd:netbsd:1.6:::::::* cpe:2.3:o:netbsd:netbsd:1.5.3:::::::* cpe:2.3:o:netbsd:netbsd:1.5.2:::::::* cpe:2.3:o:netbsd:netbsd:1.5.1:::::::* cpe:2.3:o:netbsd:netbsd:1.5:::::::*	5

ExploitDB Exploits

id	Description
2013-06-10	Cisco ASA < 8.4.4.6\|8.2.5.32 Ethernet Information Leak
2007-03-23	Linux Kernel 2.0.x/2.2.x/2.4.x,FreeBSD 4.x Network Device Driver Frame Paddin...
2007-03-23	Ethernet Device Drivers Frame Padding - Info Leakage Exploit (Etherleak)

OpenVAS Exploits

Date	Description
2008-01-17	Name : Debian Security Advisory DSA 311-1 (kernel) File : nvt/deb_311_1.nasl
2008-01-17	Name : Debian Security Advisory DSA 312-1 (kernel-patch-2.4.18-powerpc) File : nvt/deb_312_1.nasl
2008-01-17	Name : Debian Security Advisory DSA 332-1 (kernel-source-2.4.17, kernel-patch-2.4.17... File : nvt/deb_332_1.nasl
2008-01-17	Name : Debian Security Advisory DSA 336-1 (kernel-source-2.2.20, kernel-image-2.2.20... File : nvt/deb_336_1.nasl
2008-01-17	Name : Debian Security Advisory DSA 423-1 (kernel-image-2.4.17-ia64) File : nvt/deb_423_1.nasl
2008-01-17	Name : Debian Security Advisory DSA 442-1 (kernel-patch-2.4.17-s390, kernel-image-2.... File : nvt/deb_442_1.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
3873	Multiple Ethernet Driver Frame Padding Information Disclosure Multiple Ethernet Network Interface Card (NIC) Device Drivers contain flaws that may result in an information leakage vulnerability. The issue is triggered when Ethernet device drivers reuse old frame buffer data to pad packets. It is possible that the flaw may allow that may allow remote attackers to harvest sensitive information from affected devices resulting in a loss of confidentiality.

Description

3873

Multiple Ethernet Driver Frame Padding Information Disclosure

Multiple Ethernet Network Interface Card (NIC) Device Drivers contain flaws that may result in an information leakage vulnerability. The issue is triggered when Ethernet device drivers reuse old frame buffer data to pad packets. It is possible that the flaw may allow that may allow remote attackers to harvest sensitive information from affected devices resulting in a loss of confidentiality.

Nessus® Vulnerability Scanner

Date	Description
2017-01-20	Name : The remote device is affected by a memory disclosure vulnerability. File : juniper_jsa10773.nasl - Type : ACT_GATHER_INFO
2015-01-23	Name : The remote Solaris system is missing a security patch from CPU jan2015. File : solaris_jan2015_SRU11_1_11_4_0.nasl - Type : ACT_GATHER_INFO
2013-09-15	Name : The remote host is missing Sun Security Patch number 125907-02 File : solaris10_x86_125907.nasl - Type : ACT_GATHER_INFO
2013-07-16	Name : The remote device is missing a vendor-supplied security patch. File : juniper_jsa10579.nasl - Type : ACT_GATHER_INFO
2005-03-18	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_29267.nasl - Type : ACT_GATHER_INFO
2005-03-18	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_28636.nasl - Type : ACT_GATHER_INFO
2005-02-16	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_29244.nasl - Type : ACT_GATHER_INFO
2005-02-16	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_28143.nasl - Type : ACT_GATHER_INFO
2004-09-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-311.nasl - Type : ACT_GATHER_INFO
2004-09-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-442.nasl - Type : ACT_GATHER_INFO
2004-09-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-423.nasl - Type : ACT_GATHER_INFO
2004-09-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-336.nasl - Type : ACT_GATHER_INFO
2004-09-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-332.nasl - Type : ACT_GATHER_INFO
2004-09-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-312.nasl - Type : ACT_GATHER_INFO
2004-07-31	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2003-039.nasl - Type : ACT_GATHER_INFO
2004-07-31	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2003-066.nasl - Type : ACT_GATHER_INFO
2004-07-31	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2003-074.nasl - Type : ACT_GATHER_INFO
2003-01-14	Name : The remote host appears to leak memory in network packets. File : etherleak.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url
ATSTAKE	http://www.atstake.com/research/advisories/2003/a010603-1.txt
BUGTRAQ	http://marc.info/?l=bugtraq&m=104222046632243&w=2 http://www.securityfocus.com/archive/1/305335/30/26420/threaded http://www.securityfocus.com/archive/1/307564/30/26270/threaded
CERT-VN	http://www.kb.cert.org/vuls/id/412115
CONFIRM	http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
MISC	http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf
OSVDB	http://www.osvdb.org/9962
OVAL	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
REDHAT	http://www.redhat.com/support/errata/RHSA-2003-025.html http://www.redhat.com/support/errata/RHSA-2003-088.html
SECTRACK	http://www.securitytracker.com/id/1031583 http://www.securitytracker.com/id/1040185
SECUNIA	http://secunia.com/advisories/7996
VULNWATCH	http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-02-02 01:02:13	Multiple Updates
2024-02-01 12:01:25	Multiple Updates
2023-09-05 12:02:07	Multiple Updates
2023-09-05 01:01:17	Multiple Updates
2023-09-02 12:02:08	Multiple Updates
2023-09-02 01:01:17	Multiple Updates
2023-08-12 12:02:35	Multiple Updates
2023-08-12 01:01:17	Multiple Updates
2023-08-11 12:02:12	Multiple Updates
2023-08-11 01:01:18	Multiple Updates
2023-08-06 12:02:02	Multiple Updates
2023-08-06 01:01:18	Multiple Updates
2023-08-04 12:02:06	Multiple Updates
2023-08-04 01:01:18	Multiple Updates
2023-07-14 12:02:05	Multiple Updates
2023-07-14 01:01:18	Multiple Updates
2023-03-29 01:02:03	Multiple Updates
2023-03-28 12:01:23	Multiple Updates
2022-10-11 12:01:51	Multiple Updates
2022-10-11 01:01:10	Multiple Updates
2021-05-04 12:01:56	Multiple Updates
2021-04-22 01:02:06	Multiple Updates
2020-05-23 00:15:19	Multiple Updates
2019-04-30 21:19:17	Multiple Updates
2019-03-19 12:01:35	Multiple Updates
2018-10-19 21:19:34	Multiple Updates
2018-01-17 09:21:37	Multiple Updates
2017-10-11 09:23:16	Multiple Updates
2017-01-21 13:22:46	Multiple Updates
2016-12-07 09:24:09	Multiple Updates
2016-10-18 12:01:08	Multiple Updates
2016-08-31 12:00:45	Multiple Updates
2016-06-28 15:01:33	Multiple Updates
2016-06-17 09:26:28	Multiple Updates
2016-06-13 21:26:30	Multiple Updates
2016-04-26 12:29:23	Multiple Updates
2015-11-24 21:26:42	Multiple Updates
2015-04-22 00:25:22	Multiple Updates
2015-04-21 09:24:03	Multiple Updates
2015-04-15 09:27:01	Multiple Updates
2015-01-24 13:23:34	Multiple Updates
2015-01-22 17:22:12	Multiple Updates
2015-01-22 13:24:56	Multiple Updates
2014-02-17 10:25:41	Multiple Updates
2013-05-11 11:49:57	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	2
Oval ID(s)	2
CPE ID(s)	37
Sources(s)	15
osvdb(s)	1
ExploitDB Exploit(s)	3
Openvas Exploit(s)	6
Nessus® Exploit(s)	18

	Related
10	DSA-442
10	DSA-336
10	DSA-332
10	DSA-312
10	DSA-311
7.2	DSA-423
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 6 more Alert(s)

5 - CVE-2003-0001

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

ExploitDB Exploits

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU