CVE-2003-0849

Buffer overflow in net.c for cfengine 2.x before 2.0.8 allows remote attackers to execute arbitrary code via certain packets with modified length values, which is trusted by the ReceiveTransaction function when using a buffer provided by the BusyWithConnection function.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://marc.info/?l=bugtraq&m=106451047819552&w=2
http://marc.info/?l=bugtraq&m=106485375218280&w=2
http://marc.info/?l=bugtraq&m=106546086216984&w=2

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:gnu:cfengine:2.0.0:::::::*
	cpe:2.3:a:gnu:cfengine:2.0.1:::::::*
	cpe:2.3:a:gnu:cfengine:2.0.2:::::::*
	cpe:2.3:a:gnu:cfengine:2.0.3:::::::*
	cpe:2.3:a:gnu:cfengine:2.0.4:::::::*
	cpe:2.3:a:gnu:cfengine:2.0.5:::::::*
	cpe:2.3:a:gnu:cfengine:2.0.5:b1::::::
	cpe:2.3:a:gnu:cfengine:2.0.5:pre::::::
	cpe:2.3:a:gnu:cfengine:2.0.5:pre2::::::
	cpe:2.3:a:gnu:cfengine:2.0.6:::::::*
	cpe:2.3:a:gnu:cfengine:2.0.7:::::::*
	cpe:2.3:a:gnu:cfengine:2.0.7:p1::::::
	cpe:2.3:a:gnu:cfengine:2.0.7:p2::::::
	cpe:2.3:a:gnu:cfengine:2.0.7:p3::::::
	cpe:2.3:a:gnu:cfengine:2.1.0:a6::::::
	cpe:2.3:a:gnu:cfengine:2.1.0:a8::::::
	cpe:2.3:a:gnu:cfengine:2.1.0:a9::::::

History

No history.

Information

Published : 2003-11-17 05:00

Updated : 2023-12-10 10:17

NVD link : CVE-2003-0849

Mitre link : CVE-2003-0849

CVE.ORG link : CVE-2003-0849

JSON object : View

Products Affected

gnu

cfengine

CWE

NVD-CWE-Other

{"id": "CVE-2003-0849", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2003-11-17T05:00:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=106451047819552&w=2", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=106485375218280&w=2", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=106546086216984&w=2", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in net.c for cfengine 2.x before 2.0.8 allows remote attackers to execute arbitrary code via certain packets with modified length values, which is trusted by the ReceiveTransaction function when using a buffer provided by the BusyWithConnection function."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en net.c de cfengine 2.x a 2.0.8 permite a atacantes remotos ejecutar c\u00f3digo arbitrario mediante ciertos paquetes con valores de longitud modificados, del cual se fia la funci\u00f3n ReceiveTransaction cuando usa un bufer provisto por la funci\u00f3n BusyWithConnection."}], "lastModified": "2016-10-18T02:38:00.937", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnu:cfengine:2.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E712F24-407C-451F-9DB4-09579B50F85B"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3AE934D-08E5-42C7-B4C1-C9B0C8881B3E"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD09E7B0-CA9F-49FC-BB8B-54CDB3230C98"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC2CD9C4-C206-4C43-B519-6E791187E2DE"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D38FC40B-AC0A-4DD6-9964-3E8D57EC5F19"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B4445F7-307B-4653-A0E4-0AE513218980"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.5:b1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B4EC7DFB-CBB8-457F-94A0-1DBB833F5F71"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.5:pre:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B6729F6-B94B-4897-BEF5-C3A10A18D085"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.5:pre2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CF801CA-BED6-43CA-8EA1-522365F2AA57"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "455F26C8-CFDD-4C9C-8482-8D53614B1143"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61A3C108-D79A-4465-8F4D-317AD84098AA"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.7:p1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D21D57EA-DF58-429B-9FBE-F0080085B62E"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.7:p2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E622AEA-F5B4-4BA3-B9F0-2E7C4D121411"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.0.7:p3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D23A118C-59A6-44AB-A772-ED0037C95B53"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.1.0:a6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CD529EF-93DF-441E-968B-32BAF48A9913"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.1.0:a8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BAB0408-08BD-4DCE-BA56-C60AD845E705"}, {"criteria": "cpe:2.3:a:gnu:cfengine:2.1.0:a9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F78851E3-1E2B-45DB-8B4A-F8E1BDE2E057"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}