Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2003-0784 | First vendor Publication | 2003-10-06 |
Vendor | Cve | Last vendor Modification | 2008-09-10 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0784 |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 3 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
2161 | IBM AIX tsm Format String Privilege Escalation IBM AIX contains a format string vulnerability in tsm bos.rte.security fileset that may allow a remote user to gain root privileges via login, and local users to gain privileges via login, su, or passwd. The issue is triggered when a username that contains format string specifiers is used. It is possible that the flaw may allow privilege escalation resulting in a loss of integrity. |
Sources (Detail)
Source | Url |
---|---|
AIXAPAR | http://www-1.ibm.com/support/search.wss?rs=0&q=IY47764&apar=only |
Alert History
Date | Informations |
---|---|
2021-05-04 12:01:59 |
|
2021-04-22 01:02:15 |
|
2020-05-23 00:15:29 |
|
2013-05-11 11:52:47 |
|