CVE-2003-0414

3 documents3 sources
Severity
7.2HIGH
EPSS
0.0%
top 85.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN ONE Application Server
Timeline
PublishedJun 30
Latest updateApr 29

Description

The installation of Sun ONE Application Server 7.0 for Windows 2000/XP creates a statefile with world-readable permissions, which allows local users to gain privileges by reading a plaintext password in the statefile.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-8753-xfxj-9r3f: The installation of Sun ONE Application Server 72022-04-29
CVEList
CVE-2003-0414: The installation of Sun ONE Application Server 72003-06-11
CVE-2003-0414 (HIGH CVSS 7.2) | The installation of Sun ONE Applica | cvebase.io