Vulnerability Details : CVE-2003-0740

Stunnel 4.00, and 3.24 and earlier, leaks a privileged file descriptor returned by listen(), which allows local users to hijack the Stunnel server.

Published 2003-10-20 04:00:00

Updated 2016-10-18 02:37:06

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2003-0740

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ % EPSS Score History EPSS FAQ

CVSS scores for CVE-2003-0740

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	[email protected]
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2003-0740

Products affected by CVE-2003-0740

Stunnel » Stunnel » Version: 3.4a
cpe:2.3:a:stunnel:stunnel:3.4a:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.7
cpe:2.3:a:stunnel:stunnel:3.7:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.8
cpe:2.3:a:stunnel:stunnel:3.8:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.3
cpe:2.3:a:stunnel:stunnel:3.3:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.14
cpe:2.3:a:stunnel:stunnel:3.14:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.15
cpe:2.3:a:stunnel:stunnel:3.15:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.16
cpe:2.3:a:stunnel:stunnel:3.16:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.21b
cpe:2.3:a:stunnel:stunnel:3.21b:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.21c
cpe:2.3:a:stunnel:stunnel:3.21c:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.9
cpe:2.3:a:stunnel:stunnel:3.9:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.12
cpe:2.3:a:stunnel:stunnel:3.12:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.13
cpe:2.3:a:stunnel:stunnel:3.13:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.21
cpe:2.3:a:stunnel:stunnel:3.21:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.21a
cpe:2.3:a:stunnel:stunnel:3.21a:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.17
cpe:2.3:a:stunnel:stunnel:3.17:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.18
cpe:2.3:a:stunnel:stunnel:3.18:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.22
cpe:2.3:a:stunnel:stunnel:3.22:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.24
cpe:2.3:a:stunnel:stunnel:3.24:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.10
cpe:2.3:a:stunnel:stunnel:3.10:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.11
cpe:2.3:a:stunnel:stunnel:3.11:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.19
cpe:2.3:a:stunnel:stunnel:3.19:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.20
cpe:2.3:a:stunnel:stunnel:3.20:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.0
cpe:2.3:a:stunnel:stunnel:4.0:*:*:*:*:*:*:*
Matching versions