Vulnerability Details CVE-2003-0333
Multiple buffer overflows in kermit in HP-UX 10.20 and 11.00 (C-Kermit 6.0.192 and possibly other versions before 8.0) allow local users to gain privileges via long arguments to (1) ask, (2) askq, (3) define, (4) assign, and (5) getc, some of which may share the same underlying function "doask," a different vulnerability than CVE-2001-0085.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.1%
CVSS Severity
CVSS v2 Score 7.2
References
- http://archives.neohapsis.com/archives/hp/current/0044.html
- http://marc.info/?l=bugtraq&m=105189670912220&w=2
- http://marc.info/?l=bugtraq&m=105190667523456&w=2
- http://www.kb.cert.org/vuls/id/971364
- http://www.securityfocus.com/bid/7627
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11929
- http://archives.neohapsis.com/archives/hp/current/0044.html
- http://marc.info/?l=bugtraq&m=105189670912220&w=2
- http://marc.info/?l=bugtraq&m=105190667523456&w=2
- http://www.kb.cert.org/vuls/id/971364
- http://www.securityfocus.com/bid/7627
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11929