4.6

CVE-2003-0165

Exploit
Format string vulnerability in Eye Of Gnome (EOG) allows attackers to execute arbitrary code via format string specifiers in a command line argument for the file to display.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GnomeEog Version1.0.0
GnomeEog Version1.0.1
GnomeEog Version1.0.2
GnomeEog Version1.0.3
GnomeEog Version1.0.4
GnomeEog Version1.1.1
GnomeEog Version1.1.2
GnomeEog Version1.1.3
GnomeEog Version1.1.4
GnomeEog Version2.2.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.68% 0.74
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0157.html
http://marc.info/?l=bugtraq&m=104887189724146&w=2
http://www.coresecurity.com/common/showdoc.php?idx=312&idxseccion=10
http://www.kb.cert.org/vuls/id/363001
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2003:048
http://www.redhat.com/support/errata/RHSA-2003-128.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/7121
Patch
Vendor Advisory
Exploit
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A52