Published: 31/12/2003 Updated: 11/10/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 730

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in stmkfont utility of HP-UX 10.0 up to and including 11.22 allows local users to gain privileges via a long command line argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hp hp-ux 10.10
hp hp-ux 10.16
hp hp-ux 11.04
hp hp-ux 11.11
hp hp-ux 10.08
hp hp-ux 10.09
hp hp-ux 11.0.4
hp hp-ux 11.00
hp hp-ux 10.20
hp hp-ux 10.24
hp hp-ux 11.20
hp hp-ux 11.22
hp hp-ux 10.00
hp hp-ux 10.01
hp hp-ux 10.26
hp hp-ux 10.30
hp hp-ux 10.34
avaya predictive dialer system 12
avaya predictive dialer system 9.0
avaya predictive dialer system 11

source: wwwsecurityfocuscom/bid/6836/info A buffer overflow vulnerability has been reported in the stmkfont utility shipped with HP-UX systems The problem occurs due to insufficient bounds checking on user-suplied data to the alternate typeface library command-line option A local attacker may be able to exploit this issue to execute ar ...

source: wwwsecurityfocuscom/bid/6836/info A buffer overflow vulnerability has been reported in the stmkfont utility shipped with HP-UX systems The problem occurs due to insufficient bounds checking on user-suplied data to the alternate typeface library command-line option A local attacker may be able to exploit this issue to execute ...

CWE-119 http://www.securityfocus.com/archive/1/324381 http://www.securityfocus.com/advisories/4959 http://www.securityfocus.com/bid/6836 http://securityreason.com/securityalert/3236 https://exchange.xforce.ibmcloud.com/vulnerabilities/11313 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5587 https://nvd.nist.gov https://www.exploit-db.com/exploits/22246/

CVE-2003-1359

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect