CVE-2003-0740
Published Oct 20, 2003
Last updated 8 years ago
Overview
- Description
- Stunnel 4.00, and 3.24 and earlier, leaks a privileged file descriptor returned by listen(), which allows local users to hijack the Stunnel server.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E4A0103-713D-4E56-B32F-EB1649F26EE7"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.4a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D009335-E83C-4B35-ADB0-CBD6B82C0EA3"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "185B6AF8-18E7-4E6A-A7B9-60DFB17F33E2"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "400FE849-D547-44DE-B06F-5B68E5B20E07"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C236DC35-A2F7-47FB-AD51-17D2A0FD7DA2"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B256301B-9C6A-4BA6-8318-675C0EF4C316"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EC33DAEE-8F51-404F-B5C4-B8A30B467E94"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1FCDC66D-3BF5-4763-8877-38B0D3326E62"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "75772E28-BD93-4981-96FA-CDF41DAF65AF"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2415230E-4F66-4DDE-9E34-F685E8F4085A"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5121749D-3E19-4A9B-8C2D-84420A4E289B"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E14DE44-69E6-4D0E-AD06-A829AFCDE528"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3D5B202D-D93D-4E33-BC9F-DA44B727C0B6"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CCC62D42-832D-4E6E-93D9-E7BA0CBC7799"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B5D49F98-9A24-464A-8695-58218C14B3DC"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ADFFE78D-90EC-46C6-B215-2EADD9E0D146"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6132108C-C344-4ABC-AF40-1925830A6723"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.21a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8362D330-E286-4534-8560-B4B38E21767F"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.21b:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D0496D60-BE45-45FF-B360-60E59443DB96"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.21c:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DA2EA0D4-05B6-4500-9374-74BBDAB6001F"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F16BDA03-BFAB-4839-A83A-370865928225"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:3.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EB5A2E06-A98E-409C-9A90-460AF4CCF101"
},
{
"criteria": "cpe:2.3:a:stunnel:stunnel:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6FC396CE-FDA7-480C-9E94-1A26B7FB208E"
}
],
"operator": "OR"
}
]
}
]