1. CVE-Search
  2. CVE-2003-0034
ID CVE-2003-0034
Summary Buffer overflow in the mtink status monitor, as included in the printer-drivers package in Mandrake Linux, allows local users to execute arbitrary code via a long HOME environment variable.
References
Vulnerable Configurations
  • cpe:2.3:a:jean-jacques_sarton:mtink:0.9.32:*:*:*:*:*:*:*
    cpe:2.3:a:jean-jacques_sarton:mtink:0.9.32:*:*:*:*:*:*:*
  • cpe:2.3:a:jean-jacques_sarton:mtink:0.9.33:*:*:*:*:*:*:*
    cpe:2.3:a:jean-jacques_sarton:mtink:0.9.33:*:*:*:*:*:*:*
  • cpe:2.3:a:jean-jacques_sarton:mtink:0.9.52:*:*:*:*:*:*:*
    cpe:2.3:a:jean-jacques_sarton:mtink:0.9.52:*:*:*:*:*:*:*
CVSS
Base: 7.2 (as of 11-09-2008 - 00:05)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 6656
mandrake MDKSA-2003:010
misc http://www.idefense.com/advisory/01.21.03.txt
sectrack 1005959
vulnwatch 20030121 iDEFENSE Security Advisory 01.21.03: Buffer Overflows in Mandrake Linux printer-drivers Package
Last major update 11-09-2008 - 00:05
Published 07-02-2003 - 05:00
Last modified 11-09-2008 - 00:05
Back to Top