Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-1359Improper Restriction of Operations within the Bounds of a Memory Buffer in Predictive Dialer System

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.3%
top 48.42%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Avaya Predictive Dialer SystemHP Hp-ux
Timeline
PublishedDec 31
Latest updateApr 29

Description

Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDhp/hp-ux17 versions+16

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-5657-h9cj-f78j: Buffer overflow in stmkfont utility of HP-UX 102022-04-29
CVEList
CVE-2003-1359: Buffer overflow in stmkfont utility of HP-UX 102007-10-17

💥Exploits & PoCs

2
Exploit-DB
HP-UX 10.x - stmkfont Alternate Typeface Library Buffer Overflow (2)2003-02-20
Exploit-DB
HP-UX 10.x - stmkfont Alternate Typeface Library Buffer Overflow (1)2003-02-12
CVE-2003-1359 — Predictive Dialer System vulnerability | cvebase