CVE-2003-0173
published 2003-05-05CVE-2003-0173: xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges.
PriorityP422high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.49%
38.4th percentile
xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges.
Affected
67 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | xfsdump | < xfsdump 2.2.8-1 (bookworm) | xfsdump 2.2.8-1 (bookworm) |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2003-0173: xfsdump - xfsdq in xfsdump does not create quota information files securely, which allows ...
vendor_debian·2003·CVSS 7.2
CVE-2003-0173 [HIGH] CVE-2003-0173: xfsdump - xfsdq in xfsdump does not create quota information files securely, which allows ...
xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges.
Scope: local
bookworm: resolved (fixed in 2.2.8-1)
bullseye: resolved (fixed in 2.2.8-1)
forky: resolved (fixed in 2.2.8-1)
sid: resolved (fixed in 2.2.8-1)
trixie: resolved (fixed in 2.2.8-1)
GHSA
GHSA-3h3c-hfv6-pc8h: xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges
ghsa_unreviewed·2022-05-03
CVE-2003-0173 [HIGH] GHSA-3h3c-hfv6-pc8h: xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges
xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges.
OSV
CVE-2003-0173: xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges
osv·2003-05-05·CVSS 7.2
CVE-2003-0173 [HIGH] CVE-2003-0173: xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges
xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
ftp://patches.sgi.com/support/free/security/advisories/20030404-01-Phttp://www.debian.org/security/2003/dsa-283http://www.kb.cert.org/vuls/id/111673http://www.mandriva.com/security/advisories?name=MDKSA-2003:047ftp://patches.sgi.com/support/free/security/advisories/20030404-01-Phttp://www.debian.org/security/2003/dsa-283http://www.kb.cert.org/vuls/id/111673http://www.mandriva.com/security/advisories?name=MDKSA-2003:047
2003-05-05
Published