Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-0834

5 documents4 sources

Severity

7.2HIGH

EPSS

0.6%

top 29.77%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

SCO Open Unix SCO Unixware

Timeline

PublishedDec 1

Latest updateMay 3

Description

Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDsco/unixware7.1.1, 7.1.3+1

▶NVDsco/open_unix8.0

Patches

Patch: www.kb.cert.org ↗Patch: www.securityfocus.com ↗Patch: www.kb.cert.org ↗

🔴Vulnerability Details

GHSA

GHSA-hffw-p4ph-5fmr: Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and↗2022-05-03

▶

CVEList

CVE-2003-0834: Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and↗2003-11-06

▶

💥Exploits & PoCs

Exploit-DB

Solaris 7/8/9 CDE LibDTHelp - Local Buffer Overflow (2)↗2004-12-24

▶

Exploit-DB

Solaris 7/8/9 CDE LibDTHelp - Local Buffer Overflow (1)↗2004-12-24

▶