CVE-2003-0700

7 documents5 sources
Severity
7.5HIGH
EPSS
0.6%
top 31.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Kernel
Timeline
PublishedFeb 17
Latest updateApr 29

Description

The C-Media PCI sound driver in Linux before 2.4.22 does not use the get_user function to access userspace in certain conditions, which crosses security boundaries and may facilitate the exploitation of vulnerabilities, a different vulnerability than CVE-2003-0699.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDredhat/kernel2.4.21

Patches

Patch: www.redhat.comPatch: www.redhat.comPatch: www.redhat.com

🔴Vulnerability Details

2
GHSA
GHSA-cjj3-f422-488c: The C-Media PCI sound driver in Linux before 22022-04-29
CVEList
CVE-2003-0700: The C-Media PCI sound driver in Linux before 22004-01-22

📋Vendor Advisories

2
Red Hat
security flaw2003-08-21
Red Hat
security flaw2003-07-21

💬Community

2
Bugzilla
CVE-2003-0700 security flaw2018-08-16
Bugzilla
CVE-2003-0699 security flaw2018-08-16
CVE-2003-0700 (HIGH CVSS 7.5) | The C-Media PCI sound driver in Lin | cvebase.io