Vulnerability Details : CVE-2003-0612
Multiple buffer overflows in main.c for Crafty 19.3 allow local users to gain group "games" privileges via long command line arguments to crafty.bin.
Exploit prediction scoring system (EPSS) score for CVE-2003-0612
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 8 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2003-0612
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
4.6
|
MEDIUM | AV:L/AC:L/Au:N/C:P/I:P/A:P |
3.9
|
6.4
|
[email protected] |
References for CVE-2003-0612
-
http://www.securityfocus.com/bid/9893
-
http://securitytracker.com/id?1009393
-
http://packages.debian.org/changelogs/pool/non-free/c/crafty/crafty_19.15-1/changelog.txt
-
http://www.securityfocus.com/archive/1/357601
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/13017
-
http://securitytracker.com/id?1009398
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/15501
-
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=203541
Products affected by CVE-2003-0612
- cpe:2.3:a:robert_hyatt:crafty:19.3:*:*:*:*:*:*:*