CVE-2003-0325 - Vulnerability Details - OpenCVE

Buffer overflow in Maelstrom 3.0.6, 3.0.5, and earlier allows local users to execute arbitrary code via a long -server command line argument.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ambrosia Software	Maelstrom

Configuration 1 [-]

OR	cpe:2.3:a:ambrosia_software:maelstrom::::::::
	cpe:2.3:a:ambrosia_software:maelstrom:3.0.6:::::::*

No data.

References

Link	Providers
http://marc.info/?l=bugtraq&m=105337792703887&w=2
http://marc.info/?l=bugtraq&m=105344501331344&w=2
http://marc.info/?l=bugtraq&m=105346309123217&w=2

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2003-05-22T04:00:00

Updated: 2024-08-08T01:50:47.568Z

Reserved: 2003-05-19T00:00:00

Link: CVE-2003-0325

Vulnrichment

No data.

NVD

Status : Modified

Published: 2003-06-09T04:00:00.000

Modified: 2024-11-20T23:44:28.693

Link: CVE-2003-0325

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2003-05-18T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in Maelstrom 3.0.6, 3.0.5, and earlier allows local users to execute arbitrary code via a long -server command line argument."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20030520 Maelstrom Local Buffer Overflow Exploit, FreeBSD 4.8 edition", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105346309123217&w=2"}, {"name": "20030518 Maelstrom Buffer Overflow", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105337792703887&w=2"}, {"name": "20030519 Maelstrom exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105344501331344&w=2"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2003-0325", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in Maelstrom 3.0.6, 3.0.5, and earlier allows local users to execute arbitrary code via a long -server command line argument."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20030520 Maelstrom Local Buffer Overflow Exploit, FreeBSD 4.8 edition", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105346309123217&w=2"}, {"name": "20030518 Maelstrom Buffer Overflow", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105337792703887&w=2"}, {"name": "20030519 Maelstrom exploit", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105344501331344&w=2"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T01:50:47.568Z"}, "title": "CVE Program Container", "references": [{"name": "20030520 Maelstrom Local Buffer Overflow Exploit, FreeBSD 4.8 edition", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105346309123217&w=2"}, {"name": "20030518 Maelstrom Buffer Overflow", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105337792703887&w=2"}, {"name": "20030519 Maelstrom exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105344501331344&w=2"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2003-0325", "datePublished": "2003-05-22T04:00:00", "dateReserved": "2003-05-19T00:00:00", "dateUpdated": "2024-08-08T01:50:47.568Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ambrosia_software:maelstrom:*:*:*:*:*:*:*:*", "matchCriteriaId": "14D82AD7-57A3-4132-A761-6FF38030653A", "versionEndIncluding": "3.0.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ambrosia_software:maelstrom:3.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "B0ADEE60-0EE3-4337-BBB4-59E820564A19", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in Maelstrom 3.0.6, 3.0.5, and earlier allows local users to execute arbitrary code via a long -server command line argument."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en Maelstrom 3.0.6, 3.0.5 y anteriores permite que usuarios locales ejecuten c\u00f3digo arbitrario mediante una l\u00ednea de comandos muy larga."}], "id": "CVE-2003-0325", "lastModified": "2024-11-20T23:44:28.693", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-06-09T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105337792703887&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105344501331344&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105346309123217&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105337792703887&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105344501331344&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105346309123217&w=2"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}