4.6
CVE-2003-0372
- EPSS 0.89%
- Veröffentlicht 16.06.2003 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:02:05
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSigned integer vulnerability in libnasl in Nessus before 2.0.6 allows local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code by causing a negative argument to be provided to the insstr function as used in a NASL script.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.89% | 0.547 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=105364059803427&w=2
http://marc.info/?l=bugtraq&m=105369506714849&w=2
http://www.securityfocus.com/bid/7664