CVE-2003-0365 : ICQLite 2003a creates the ICQ Lite directory with an ACE for "Full Control" priv

ICQLite 2003a creates the ICQ Lite directory with an ACE for "Full Control" privileges for Interactive Users, which allows local users to gain privileges as other users by replacing the executables with malicious programs.

Published 2003-06-16 04:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2003-0365

Icq Inc » Icqlite » Version: 2003a
cpe:2.3:a:icq_inc:icqlite:2003a:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2003-0365

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 19 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2003-0365

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2003-0365

http://marc.info/?l=bugtraq&m=105427404625027&w=2

Jump to

Vulnerability Details : CVE-2003-0365

Products affected by CVE-2003-0365

Exploit prediction scoring system (EPSS) score for CVE-2003-0365

CVSS scores for CVE-2003-0365

References for CVE-2003-0365