CVE-2003-1496

Unspecified vulnerability in CDE dtmailpr of HP Tru64 4.0F through 5.1B allows local users to gain privileges via unknown attack vectors. NOTE: due to lack of details in the vendor advisory, it is not clear whether this is the same issue as CVE-1999-0840.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/9990
http://www.securityfocus.com/advisories/5973
http://www.securityfocus.com/bid/8813
https://exchange.xforce.ibmcloud.com/vulnerabilities/13418

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:hp:tru64:4.0f:::::::*
	cpe:2.3:o:hp:tru64:4.0f_pk6_bl17:::::::*
	cpe:2.3:o:hp:tru64:4.0f_pk7_bl18:::::::*
	cpe:2.3:o:hp:tru64:4.0f_pk8_bl22:::::::*
	cpe:2.3:o:hp:tru64:4.0g:::::::*
	cpe:2.3:o:hp:tru64:4.0g_pk3_bl17:::::::*
	cpe:2.3:o:hp:tru64:4.0g_pk4_bl22:::::::*
	cpe:2.3:o:hp:tru64:5.1:::::::*
	cpe:2.3:o:hp:tru64:5.1_pk3_bl17:::::::*
	cpe:2.3:o:hp:tru64:5.1_pk4_bl18:::::::*
	cpe:2.3:o:hp:tru64:5.1_pk5_bl19:::::::*
	cpe:2.3:o:hp:tru64:5.1_pk6_bl20:::::::*
	cpe:2.3:o:hp:tru64:5.1a:::::::*
	cpe:2.3:o:hp:tru64:5.1a_pk1_bl1:::::::*
	cpe:2.3:o:hp:tru64:5.1a_pk2_bl2:::::::*
	cpe:2.3:o:hp:tru64:5.1a_pk3_bl3:::::::*
	cpe:2.3:o:hp:tru64:5.1a_pk4_bl21:::::::*
	cpe:2.3:o:hp:tru64:5.1a_pk5_bl23:::::::*
	cpe:2.3:o:hp:tru64:5.1b:::::::*

History

No history.

Information

Published : 2003-12-31 05:00

Updated : 2023-12-10 10:17

NVD link : CVE-2003-1496

Mitre link : CVE-2003-1496

CVE.ORG link : CVE-2003-1496

JSON object : View

Products Affected

hp

tru64

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2003-1496", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2003-12-31T05:00:00.000", "references": [{"url": "http://secunia.com/advisories/9990", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/advisories/5973", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/8813", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/13418", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in CDE dtmailpr of HP Tru64 4.0F through 5.1B allows local users to gain privileges via unknown attack vectors. NOTE: due to lack of details in the vendor advisory, it is not clear whether this is the same issue as CVE-1999-0840."}], "lastModified": "2017-07-29T01:29:14.420", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:tru64:4.0f:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E8BA552-394A-4E06-8CAD-24A2F542FD91"}, {"criteria": "cpe:2.3:o:hp:tru64:4.0f_pk6_bl17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6AA75E53-3F51-4831-AA37-CC92B20C1BBC"}, {"criteria": "cpe:2.3:o:hp:tru64:4.0f_pk7_bl18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "849FBAAE-2276-4630-9FAB-C7A8B957E050"}, {"criteria": "cpe:2.3:o:hp:tru64:4.0f_pk8_bl22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E274E5C-35D2-4962-B95A-FBDCFC6B14A4"}, {"criteria": "cpe:2.3:o:hp:tru64:4.0g:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E43FAAEF-B0DD-466F-A74E-43CBA4CCF7E7"}, {"criteria": "cpe:2.3:o:hp:tru64:4.0g_pk3_bl17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EB0E6C9-B9F3-454F-8439-D413BFEF77D4"}, {"criteria": "cpe:2.3:o:hp:tru64:4.0g_pk4_bl22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A97F17CC-C041-4AE2-ADC5-10B7142A887F"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5840611-A108-48EE-9D5A-4B6DA0621FF4"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1_pk3_bl17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C450474-B2CA-41BE-A018-C40F31B42631"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1_pk4_bl18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7264B11E-3FDB-430C-939A-540DEB1FEFC9"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1_pk5_bl19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71990EDD-6C78-4A91-8B51-073A973A2A7B"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1_pk6_bl20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "700E9BB4-18F5-4936-9A9B-DA286D8A7F1B"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "684BEA17-3BFC-4C30-9E8A-411D9D057354"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1a_pk1_bl1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8A3CBA31-274D-4269-882E-942218779B34"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1a_pk2_bl2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4182EA9-2E4D-42D5-9FAD-C0F174B37DE3"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1a_pk3_bl3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E33146B-BCB9-4D5C-B129-7F60BB5E2225"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1a_pk4_bl21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "144C9680-CE26-4986-BE67-EDAF11CF66FC"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1a_pk5_bl23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87051FC2-10C6-40C5-BE24-A0C26206ED88"}, {"criteria": "cpe:2.3:o:hp:tru64:5.1b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09AFA06E-482B-4C00-B03A-3FFC87CDB099"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}