CVE-2003-0107

Exploit

EPSS 33.5%
Veröffentlicht 07.03.2003 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf, allows attackers to cause a denial of service or possibly execute arbitrary code.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 22

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Zlib ≫ Zlib Version1.1.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	33.5%	0.968

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-011.0.txt

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-004.txt.asc

http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000619

http://jvn.jp/en/jp/JVN78689801/index.html

http://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000066.html

http://lists.apple.com/mhonarc/security-announce/msg00038.html

http://marc.info/?l=bugtraq&m=104610337726297&w=2

http://marc.info/?l=bugtraq&m=104610536129508&w=2

http://marc.info/?l=bugtraq&m=104620610427210&w=2

http://marc.info/?l=bugtraq&m=104887247624907&w=2

http://online.securityfocus.com/archive/1/312869

Exploit

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57405

http://www.iss.net/security_center/static/11381.php

Vendor Advisory

http://www.kb.cert.org/vuls/id/142121

US Government Resource

http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:033

http://www.osvdb.org/6599

http://www.redhat.com/support/errata/RHSA-2003-079.html

http://www.redhat.com/support/errata/RHSA-2003-081.html

http://www.securityfocus.com/bid/6913

https://nvd.nist.gov/vuln/detail/CVE-2003-0107

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-0107

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-0107

EUVD