CVE-2003-0859

Published Dec 15, 2003

Last updated 7 years ago

CVSS info 4.9

Overview

Description: The getifaddrs function in GNU libc (glibc) 2.2.4 and earlier allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.9
Impact score: 6.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:gnu:glibc:2.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAADC158-B7EF-4135-B383-0DA43065B43E"
          },
          {
            "criteria": "cpe:2.3:a:gnu:zebra:0.91a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4422632-71AE-4E7F-8684-EC63F9B05F50"
          },
          {
            "criteria": "cpe:2.3:a:gnu:zebra:0.92a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06039EBD-0C90-42C9-B182-9A59A7A3075A"
          },
          {
            "criteria": "cpe:2.3:a:gnu:zebra:0.93a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01D1D224-8BD6-46AD-AA75-5457A2E007A0"
          },
          {
            "criteria": "cpe:2.3:a:gnu:zebra:0.93b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FDEEAC68-6442-4E82-B072-491ED94EE6D9"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga_routing_software_suite:0.96.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "435E018F-DDB1-4909-B808-A45315AFECE8"
          },
          {
            "criteria": "cpe:2.3:a:sgi:propack:2.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AB7B969-1093-46A9-AA8D-0C28F138C4D9"
          },
          {
            "criteria": "cpe:2.3:a:sgi:propack:2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26430687-409B-448F-934B-06AB937DDF63"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2641EE56-6F9D-400B-B456-877F4DA79B10"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server_ia64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4A9461E-C117-42EC-9F14-DF2A82BA7C5D"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0B458EA-495E-40FA-9379-C03757F7B1EE"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server_ia64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "409E324A-C040-494F-A026-9DCAE01C07F8"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1728AB5D-55A9-46B0-A412-6F7263CAEB5A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6474B775-C893-491F-A074-802AFB1FEDD8"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_servers:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81B543F9-C209-46C2-B0AE-E14818A6992E"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC79FF22-2664-4C40-B0B3-6D23B5F45162"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "777F9EC0-2919-45CA-BFF8-78A02537C513"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:ia64:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A94B8E3-D6A5-4061-885C-DDA14E00E63A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References