CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2003-0372

Signed integer vulnerability in libnasl in Nessus before 2.0.6 allows local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code by causing a negative argument to be provided to the insstr function as used in a NASL script.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.2%

CVSS Severity

CVSS v2 Score 4.6

References

http://marc.info/?l=bugtraq&m=105364059803427&w=2
http://marc.info/?l=bugtraq&m=105369506714849&w=2
http://www.securityfocus.com/bid/7664
http://marc.info/?l=bugtraq&m=105364059803427&w=2
http://marc.info/?l=bugtraq&m=105369506714849&w=2
http://www.securityfocus.com/bid/7664

Products affected by CVE-2003-0372

Nessus » Nessus » Version: Any

cpe:2.3:a:nessus:nessus:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-0372

Products

Pricing

Contact Us