CVE-2003-0955 - Vulnerability Details - OpenCVE

OpenBSD kernel 3.3 and 3.4 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code in 3.4 via a program with an invalid header that is not properly handled by (1) ibcs2_exec.c in the iBCS2 emulation (compat_ibcs2) or (2) exec_elf.c, which leads to a stack-based buffer overflow.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Openbsd	Openbsd

Configuration 1 [-]

OR	cpe:2.3:o:openbsd:openbsd:3.3:::::::*
	cpe:2.3:o:openbsd:openbsd:3.4:::::::*

No data.

References

Link	Providers
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch
http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013315.html
http://marc.info/?l=openbsd-security-announce&m=106808820119679&w=2
http://marc.info/?l=openbsd-security-announce&m=106917441524978&w=2
http://www.guninski.com/msuxobsd2.html
http://www.openbsd.org/errata33.html
http://www.securityfocus.com/bid/8978

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2003-11-21T05:00:00

Updated: 2024-08-08T02:12:35.415Z

Reserved: 2003-11-19T00:00:00

Link: CVE-2003-0955

Vulnrichment

No data.

NVD

Status : Modified

Published: 2003-12-15T05:00:00.000

Modified: 2024-11-20T23:45:55.567

Link: CVE-2003-0955

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2003-11-04T00:00:00", "descriptions": [{"lang": "en", "value": "OpenBSD kernel 3.3 and 3.4 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code in 3.4 via a program with an invalid header that is not properly handled by (1) ibcs2_exec.c in the iBCS2 emulation (compat_ibcs2) or (2) exec_elf.c, which leads to a stack-based buffer overflow."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20031104 010: RELIABILITY FIX: November 4, 2003", "tags": ["vendor-advisory", "x_refsource_OPENBSD"], "url": "http://www.openbsd.org/errata33.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://marc.info/?l=openbsd-security-announce&m=106917441524978&w=2"}, {"name": "8978", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/8978"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://marc.info/?l=openbsd-security-announce&m=106808820119679&w=2"}, {"name": "20031104 OpenBSD kernel overflow, yet still *BSD much better than windows", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013315.html"}, {"name": "20031105 005: RELIABILITY FIX: November 4, 2003", "tags": ["vendor-advisory", "x_refsource_OPENBSD"], "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch"}, {"tags": ["x_refsource_MISC"], "url": "http://www.guninski.com/msuxobsd2.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2003-0955", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "OpenBSD kernel 3.3 and 3.4 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code in 3.4 via a program with an invalid header that is not properly handled by (1) ibcs2_exec.c in the iBCS2 emulation (compat_ibcs2) or (2) exec_elf.c, which leads to a stack-based buffer overflow."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20031104 010: RELIABILITY FIX: November 4, 2003", "refsource": "OPENBSD", "url": "http://www.openbsd.org/errata33.html"}, {"name": "http://marc.info/?l=openbsd-security-announce&m=106917441524978&w=2", "refsource": "CONFIRM", "url": "http://marc.info/?l=openbsd-security-announce&m=106917441524978&w=2"}, {"name": "8978", "refsource": "BID", "url": "http://www.securityfocus.com/bid/8978"}, {"name": "http://marc.info/?l=openbsd-security-announce&m=106808820119679&w=2", "refsource": "CONFIRM", "url": "http://marc.info/?l=openbsd-security-announce&m=106808820119679&w=2"}, {"name": "20031104 OpenBSD kernel overflow, yet still *BSD much better than windows", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013315.html"}, {"name": "20031105 005: RELIABILITY FIX: November 4, 2003", "refsource": "OPENBSD", "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch"}, {"name": "http://www.guninski.com/msuxobsd2.html", "refsource": "MISC", "url": "http://www.guninski.com/msuxobsd2.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T02:12:35.415Z"}, "title": "CVE Program Container", "references": [{"name": "20031104 010: RELIABILITY FIX: November 4, 2003", "tags": ["vendor-advisory", "x_refsource_OPENBSD", "x_transferred"], "url": "http://www.openbsd.org/errata33.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://marc.info/?l=openbsd-security-announce&m=106917441524978&w=2"}, {"name": "8978", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/8978"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://marc.info/?l=openbsd-security-announce&m=106808820119679&w=2"}, {"name": "20031104 OpenBSD kernel overflow, yet still *BSD much better than windows", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013315.html"}, {"name": "20031105 005: RELIABILITY FIX: November 4, 2003", "tags": ["vendor-advisory", "x_refsource_OPENBSD", "x_transferred"], "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.guninski.com/msuxobsd2.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2003-0955", "datePublished": "2003-11-21T05:00:00", "dateReserved": "2003-11-19T00:00:00", "dateUpdated": "2024-08-08T02:12:35.415Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:openbsd:openbsd:3.3:*:*:*:*:*:*:*", "matchCriteriaId": "AC46909F-DDFC-448B-BCDF-1EB343F96630", "vulnerable": true}, {"criteria": "cpe:2.3:o:openbsd:openbsd:3.4:*:*:*:*:*:*:*", "matchCriteriaId": "9496279F-AB43-4B53-81A6-87C651ABC4BA", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "OpenBSD kernel 3.3 and 3.4 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code in 3.4 via a program with an invalid header that is not properly handled by (1) ibcs2_exec.c in the iBCS2 emulation (compat_ibcs2) or (2) exec_elf.c, which leads to a stack-based buffer overflow."}, {"lang": "es", "value": "El Kernel OpenBSD 3.3 y 3.4 permite que usuarios locales causen una denegaci\u00f3n de servicio (kernel panic) y posiblemente ejecuten c\u00f3digo arbitrario en 3.4 mediante un programa con una cabecera inv\u00e1lida. Esto no lo maneja adecuadamente en (1) bcs2_exec.c o (2) exec_elf.c, que lleva a un desbordamiento de b\u00fafer."}], "id": "CVE-2003-0955", "lastModified": "2024-11-20T23:45:55.567", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-12-15T05:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch"}, {"source": "cve@mitre.org", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013315.html"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=openbsd-security-announce&m=106808820119679&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=openbsd-security-announce&m=106917441524978&w=2"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Vendor Advisory"], "url": "http://www.guninski.com/msuxobsd2.html"}, {"source": "cve@mitre.org", "url": "http://www.openbsd.org/errata33.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/8978"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013315.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=openbsd-security-announce&m=106808820119679&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=openbsd-security-announce&m=106917441524978&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Vendor Advisory"], "url": "http://www.guninski.com/msuxobsd2.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openbsd.org/errata33.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/8978"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}