Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2003-0453

Published: 07/08/2003 Updated: 18/10/2016
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Traceroute-nanog

Vulnerability Summary

traceroute-nanog 6.1.1 allows local users to overwrite unauthorized memory and possibly execute arbitrary code via certain "nprobes" and "max_ttl" arguments that cause an integer overflow that is used when allocating memory, which leads to a buffer overflow.

Vulnerable Product Search on Vulmon Subscribe to Product

ehud gavron traceroute-nanog 6.1.1

Vendor Advisories

Debian Security Advisories: DSA-348-1 traceroute-nanog -- integer overflow, buffer overflow
traceroute-nanog, an enhanced version of the common traceroute program, contains an integer overflow bug which could be exploited to execute arbitrary code traceroute-nanog is setuid root, but drops root privileges immediately after obtaining raw ICMP and raw IP sockets Thus, exploitation of this bug provides only access to these sockets, and not ...

References

NVD-CWE-Otherhttp://www.debian.org/security/2003/dsa-348http://marc.info/?l=bugtraq&m=105613905425563&w=2https://nvd.nist.govhttps://www.debian.org/security/./dsa-348
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook