Details of VAR-200309-0035

ID

VAR-200309-0035

CVE

CVE-2003-0693

TITLE

OpenSSH contains buffer management errors

Trust: 0.8

sources: CERT/CC: VU#333628

DESCRIPTION

A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitrary code by causing an incorrect amount of memory to be freed and corrupting the heap, a different vulnerability than CVE-2003-0695. While the full impact of these vulnerabilities are unclear, they may lead to memory corruption and a denial-of-service situation. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ OpenSSH Project More distributed OpenSSH 3.7 (Portable Edition OpenSSH 3.7p1) Previously, there were deficiencies in buffer management. If a remote attacker receives a packet of a deliberate length that frees other nearby areas when releasing the buffer, the heap area can be destroyed. As a result, remote attackers who exploit this issue sshd Can be put into a denial of service, and arbitrary code execution has been suggested. The routine in which the problem exists is OpenSSH Others that are using similar routines since being used since the initial release of SSH The implementation of may also be affected. SSH Secure Shell/Ciso IOS Has been reported by the vendor to be unaffected by this issue. Also, F-Secure SSH about, 1.3.14 (for Unix) Previously affected, 2.x Since then, the vendor has reported that it will not be affected. Initially this problem (CAN-2003-0693) Is buffer.c Inside buffer_append_space() Discovered in the function, OpenSSH 3.7p1 It was solved with. However, since a similar problem was discovered in other places after that, this problem was solved. OpenSSH 3.7.1p1 Has been released. (CAN-2003-0695) In addition, memory management issues that are different from the above issues (CAN-2003-0682) Has also been reported, OpenSSH 3.7.1p2 It can be solved by updating to. still, Red Hat Linux About the vendor 2003 Year 9 Moon 17 Advisory published by date (RHSA-2003:279-17) Indicated in RPM Updates to the package, Turboinux About the vendor 2003 Year 9 Moon 24 Advisory published on date (TLSA-2003-53) All of these issues are due to updates to the packages indicated in (CAN-2003-0682/CAN-2003-0693/CAN-2003-0695) Can be eliminated.Please refer to the “Overview” for the impact of this vulnerability. The issue may cause a denial of service. This condition can reportedly be triggered by an overly large packet. There are also unconfirmed rumors of an exploit for this vulnerability circulating in the wild. OpenSSH has revised their advisory, pointing out a similar issue in the 'channels.c' source file and an additional issue in 'buffer.c'. Solar Designer has also reportedly pointed out additional instances of the problem that may also present vulnerabilities

Trust: 2.61

sources: NVD: CVE-2003-0693 // CERT/CC: VU#333628 // JVNDB: JVNDB-2003-000274 // BID: 8628

AFFECTED PRODUCTS

vendor:	cisco	model:	catos	scope:	eq	version:	5.5	Trust: 3.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.1	Trust: 2.7
vendor:	cisco	model:	catos csx	scope:	eq	version:	5.3	Trust: 2.4
vendor:	cisco	model:	catalyst csx	scope:	eq	version:	60005.3	Trust: 2.4
vendor:	mandriva	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	cisco	model:	catos	scope:	eq	version:	6.3	Trust: 1.2
vendor:	cisco	model:	catos csx	scope:	eq	version:	5.2	Trust: 1.2
vendor:	openbsd	model:	openssh	scope:	lte	version:	3.7	Trust: 1.0
vendor:	cisco	model:	catos	scope:	eq	version:	6.2	Trust: 0.9
vendor:	cisco	model:	catos	scope:	eq	version:	5.4	Trust: 0.9
vendor:	cisco	model:	catos	scope:	eq	version:	5.1	Trust: 0.9
vendor:	cisco	model:	catos	scope:	eq	version:	4.5	Trust: 0.9
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1	Trust: 0.9
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5	Trust: 0.9
vendor:	cisco	model:	catalyst	scope:	eq	version:	50006.1	Trust: 0.9
vendor:	cisco	model:	catalyst	scope:	eq	version:	40006.1	Trust: 0.9
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.1	Trust: 0.9
vendor:	appgate network security ab	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	apple computer	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	cray	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	cyclades	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	debian linux	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	f secure	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	foundry	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	freebsd	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	guardian digital	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	ibm eserver	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	ingrian	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	mirapoint	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	netbsd	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	network appliance	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	nokia	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	openpkg	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	openssh	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	openwall gnu linux	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	red hat	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	riverstone	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sco	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	suse linux	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	slackware	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	tfs	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	trustix secure linux	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	vmware	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	openbsd	model:	openssh	scope:	eq	version:	3.7.1p1	Trust: 0.8
vendor:	cybertrust	model:	asianux server	scope:	eq	version:	1.1	Trust: 0.8
vendor:	cybertrust	model:	asianux server	scope:	eq	version:	2.0	Trust: 0.8
vendor:	cybertrust	model:	asianux server	scope:	eq	version:	2.1	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raq550	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	9 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	9 (x86)	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	6.5	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	7	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	8	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.00	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.04	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.11	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.22	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.23	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.1	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.2	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.3	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	8.0	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	9	Trust: 0.8
vendor:	cisco	model:	catos	scope:	eq	version:	7.1	Trust: 0.6
vendor:	cisco	model:	catos csx	scope:	eq	version:	5.1	Trust: 0.6
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.1	Trust: 0.6
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5	Trust: 0.6
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.5	Trust: 0.6
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.2	Trust: 0.6
vendor:	openbsd	model:	openssh	scope:	eq	version:	3.7	Trust: 0.6
vendor:	sun	model:	solaris 9 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	solaris	scope:	eq	version:	9	Trust: 0.3
vendor:	sun	model:	cobalt raq	scope:	eq	version:	550	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.2.1	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.2	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.1	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.0.9	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.0.8	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.0.7	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.0.6	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.0.5	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.0.4	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	2.0.1	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	1.7.2	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	1.7.1	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	1.7	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	1.6.3	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	1.6.2	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	1.5.18	Trust: 0.3
vendor:	stonesoft	model:	stonegate	scope:	eq	version:	1.5.17	Trust: 0.3
vendor:	snapgear	model:	os	scope:	eq	version:	1.8.4	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.22	Trust: 0.3
vendor:	sgi	model:	irix m	scope:	eq	version:	6.5.21	Trust: 0.3
vendor:	sgi	model:	irix f	scope:	eq	version:	6.5.21	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.21	Trust: 0.3
vendor:	sgi	model:	irix m	scope:	eq	version:	6.5.20	Trust: 0.3
vendor:	sgi	model:	irix f	scope:	eq	version:	6.5.20	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.20	Trust: 0.3
vendor:	sgi	model:	irix m	scope:	eq	version:	6.5.19	Trust: 0.3
vendor:	sgi	model:	irix f	scope:	eq	version:	6.5.19	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.19	Trust: 0.3
vendor:	sco	model:	open server	scope:	eq	version:	5.0.7	Trust: 0.3
vendor:	redhat	model:	openssh-server-3.5p1-6.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-server-3.4p1-2.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-server-3.1p1-3.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-server-2.9p2-7.ia64.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-server-2.9p2-7.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-server-2.5.2p2-5.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-clients-3.5p1-6.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-clients-3.4p1-2.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-clients-3.1p1-3.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-clients-2.9p2-7.ia64.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-clients-2.9p2-7.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-clients-2.5.2p2-5.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-gnome-3.5p1-6.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-gnome-3.4p1-2.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-gnome-3.1p1-3.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-gnome-2.9p2-7.ia64.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-gnome-2.9p2-7.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-gnome-2.5.2p2-5.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-3.5p1-6.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-3.4p1-2.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-3.1p1-3.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-2.9p2-7.ia64.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-2.9p2-7.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-askpass-2.5.2p2-5.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-3.5p1-6.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-3.4p1-2.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-3.1p1-3.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-2.9p2-7.ia64.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-2.9p2-7.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	openssh-2.5.2p2-5.i386.rpm	scope:	-	version:	-	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.7	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.7	Trust: 0.3
vendor:	openssh	model:	p2	scope:	eq	version:	3.6.1	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.6.1	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.6.1	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.5	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.5	Trust: 0.3
vendor:	openssh	model:	p1-1	scope:	eq	version:	3.4	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.4	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.4	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.3	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.3	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.2.3	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.2	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.1	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.1	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	openssh	model:	p1	scope:	eq	version:	3.0	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	3.0	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	eq	version:	2.9.9	Trust: 0.3
vendor:	openbsd	model:	openbsd	scope:	eq	version:	3.3	Trust: 0.3
vendor:	openbsd	model:	openbsd	scope:	eq	version:	3.2	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.6.1	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.6	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.3	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.2	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.1	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5	Trust: 0.3
vendor:	netapp	model:	secureadmin for netcache	scope:	eq	version:	5.5	Trust: 0.3
vendor:	netapp	model:	secureadmin	scope:	eq	version:	3.0	Trust: 0.3
vendor:	foundry	model:	networks serverironxl/g	scope:	-	version:	-	Trust: 0.3
vendor:	foundry	model:	networks serverironxl	scope:	-	version:	-	Trust: 0.3
vendor:	foundry	model:	networks serveriron800	scope:	-	version:	-	Trust: 0.3
vendor:	foundry	model:	networks serveriron400	scope:	-	version:	-	Trust: 0.3
vendor:	foundry	model:	networks serveriron	scope:	eq	version:	7.1.09	Trust: 0.3
vendor:	foundry	model:	networks serveriron	scope:	eq	version:	6.0	Trust: 0.3
vendor:	foundry	model:	networks serveriron t12	scope:	eq	version:	5.1.10	Trust: 0.3
vendor:	foundry	model:	networks ironview	scope:	-	version:	-	Trust: 0.3
vendor:	foundry	model:	networks fastiron	scope:	eq	version:	7.1.09	Trust: 0.3
vendor:	foundry	model:	networks edgeiron 4802f	scope:	eq	version:	0	Trust: 0.3
vendor:	foundry	model:	networks bigiron	scope:	eq	version:	7.1.09	Trust: 0.3
vendor:	f secure	model:	ssh	scope:	eq	version:	1.3.14	Trust: 0.3
vendor:	cray	model:	open software	scope:	eq	version:	3.0	Trust: 0.3
vendor:	cisco	model:	webns	scope:	eq	version:	7.20.0.03	Trust: 0.3
vendor:	cisco	model:	webns	scope:	eq	version:	7.10.2.06	Trust: 0.3
vendor:	cisco	model:	webns	scope:	eq	version:	7.10.1.02	Trust: 0.3
vendor:	cisco	model:	webns b4	scope:	eq	version:	6.10	Trust: 0.3
vendor:	cisco	model:	webns	scope:	eq	version:	6.10	Trust: 0.3
vendor:	cisco	model:	sn storage router sn5428-3.3.2-k9	scope:	eq	version:	5428	Trust: 0.3
vendor:	cisco	model:	sn storage router sn5428-3.3.1-k9	scope:	eq	version:	5428	Trust: 0.3
vendor:	cisco	model:	sn storage router sn5428-3.2.2-k9	scope:	eq	version:	5428	Trust: 0.3
vendor:	cisco	model:	sn storage router sn5428-3.2.1-k9	scope:	eq	version:	5428	Trust: 0.3
vendor:	cisco	model:	sn storage router sn5428-2.5.1-k9	scope:	eq	version:	5428	Trust: 0.3
vendor:	cisco	model:	sn storage router sn5428-2-3.3.2-k9	scope:	eq	version:	5428	Trust: 0.3
vendor:	cisco	model:	sn storage router sn5428-2-3.3.1-k9	scope:	eq	version:	5428	Trust: 0.3
vendor:	cisco	model:	secure intrusion detection system	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	pgw2200 softswitch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	gss global site selector	scope:	eq	version:	4480	Trust: 0.3
vendor:	cisco	model:	css11800 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	css11506 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	css11503 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	css11501 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	css11150 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	css11050 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	css11000 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ciscoworks wireless lan solution engine	scope:	eq	version:	1105	Trust: 0.3
vendor:	cisco	model:	ciscoworks hosting solution engine	scope:	eq	version:	1105	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.6(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.6	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.5(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.5	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.4(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.4(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.4(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.4(0.63)	Trust: 0.3
vendor:	cisco	model:	catos clr	scope:	eq	version:	7.4	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.4	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.3(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.3(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.3	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.2(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.2(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.2(0.65)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.1(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	7.1(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.4(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.4(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.4(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(9)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(8.3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(8)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(7)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(6)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(5.10)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(5)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(4)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(3)x1	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(3)x	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(10)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.3(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.2(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.2(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.2(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.1(4)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.1(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.1(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	6.1(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(9)	Trust: 0.3
vendor:	cisco	model:	catos cv	scope:	eq	version:	5.5	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(8)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(7)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(6)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(5)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(4)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(19)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(18)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(17)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(16.2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(16)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(15)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(14)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(13.5)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(13)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(12)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(11)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(10)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.5(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.4(4)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.4(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.4(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.4(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.2	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.2(7)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.2(6)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.2(5)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.2(4)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.2(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.2(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.2(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	5.1(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(9)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(8)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(7)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(6)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(5)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(4)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(13)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(12)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(11)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(10)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.5(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.4(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.3	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.2(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.2(1)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.1(3)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.1(2)	Trust: 0.3
vendor:	cisco	model:	catos	scope:	eq	version:	4.1(1)	Trust: 0.3
vendor:	cisco	model:	catalyst ws-x6380-nam	scope:	eq	version:	76003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-2	scope:	eq	version:	76003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-1	scope:	eq	version:	76003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-2	scope:	eq	version:	76002.2	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-1	scope:	eq	version:	76002.2	Trust: 0.3
vendor:	cisco	model:	catalyst ws-x6380-nam	scope:	eq	version:	76002.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-x6380-nam	scope:	eq	version:	65003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-2	scope:	eq	version:	65003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-1	scope:	eq	version:	65003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-2	scope:	eq	version:	65002.2	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-1	scope:	eq	version:	65002.2	Trust: 0.3
vendor:	cisco	model:	catalyst ws-x6380-nam	scope:	eq	version:	65002.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60007.6(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60007.5(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60007.1(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60007.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.3(4)	Trust: 0.3
vendor:	cisco	model:	catalyst pan	scope:	eq	version:	60006.3	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.2(0.111)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.2(0.110)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1(2.13)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(13)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4	Trust: 0.3
vendor:	cisco	model:	catalyst ws-x6380-nam	scope:	eq	version:	60003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-2	scope:	eq	version:	60003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-1	scope:	eq	version:	60003.1	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-2	scope:	eq	version:	60002.2	Trust: 0.3
vendor:	cisco	model:	catalyst ws-svc-nam-1	scope:	eq	version:	60002.2	Trust: 0.3
vendor:	cisco	model:	catalyst ws-x6380-nam	scope:	eq	version:	60002.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50006.3(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50006.1(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50006.1(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50006.1(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.5(7)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.5(6)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.5	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.5(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.5(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.5(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.5(13)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.5(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.4.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.4(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.4(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.4(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.4(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.2(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.2(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.2(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.2(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.2	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50005.1(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(9)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(8)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(7)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(6)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(5)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(12)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(11)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	50004.5(10)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	5000	Trust: 0.3
vendor:	cisco	model:	catalyst 4912g	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40007.6(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40007.5(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40007.1.2	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40007.1(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40007.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40006.3.5	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40006.3(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40006.1(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.5.5	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.5(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.5(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.5(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.5(13)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.5(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.4.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.4(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.4(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.4(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.4	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.2(7)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.2(6)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.2(5)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.2(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.2(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.2(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40005.1(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(9)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(8)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(7)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(6)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(5)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	40004.5(10)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	4000	Trust: 0.3
vendor:	cisco	model:	catalyst 2948g	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	29005.5(13)	Trust: 0.3
vendor:	cisco	model:	catalyst 2980g-a	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	catalyst 2980g	scope:	-	version:	-	Trust: 0.3
vendor:	caldera	model:	openlinux workstation	scope:	eq	version:	3.1.1	Trust: 0.3
vendor:	caldera	model:	openlinux server	scope:	eq	version:	3.1.1	Trust: 0.3
vendor:	blue	model:	coat systems sgme	scope:	eq	version:	2.1.6	Trust: 0.3
vendor:	blue	model:	coat systems sg2 secure proxy	scope:	eq	version:	0	Trust: 0.3
vendor:	blue	model:	coat systems security gateway os	scope:	eq	version:	3.1	Trust: 0.3
vendor:	blue	model:	coat systems security gateway os sp1	scope:	eq	version:	2.1.5001	Trust: 0.3
vendor:	blue	model:	coat systems security gateway os	scope:	eq	version:	2.1.9	Trust: 0.3
vendor:	blue	model:	coat systems proxysg	scope:	eq	version:	0	Trust: 0.3
vendor:	blue	model:	coat systems cacheos ca/sa	scope:	eq	version:	4.1.10	Trust: 0.3
vendor:	snapgear	model:	os	scope:	ne	version:	1.8.5	Trust: 0.3
vendor:	sgi	model:	irix	scope:	ne	version:	6.5.22	Trust: 0.3
vendor:	openssh	model:	p1	scope:	ne	version:	3.7.1	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	ne	version:	3.7.1	Trust: 0.3
vendor:	openssh	model:	p1	scope:	ne	version:	3.7	Trust: 0.3
vendor:	openssh	model:	openssh	scope:	ne	version:	3.7	Trust: 0.3
vendor:	f secure	model:	ssh	scope:	ne	version:	1.3.15	Trust: 0.3
vendor:	cisco	model:	catos	scope:	ne	version:	8.1(3)	Trust: 0.3

sources: CERT/CC: VU#333628 // BID: 8628 // JVNDB: JVNDB-2003-000274 // CNNVD: CNNVD-200309-032 // NVD: CVE-2003-0693

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2003-0693
value:	HIGH
Trust: 1.0
CARNEGIE MELLON:	VU#333628
value:	28.98
Trust: 0.8
NVD:	CVE-2003-0693
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-200309-032
value:	CRITICAL
Trust: 0.6

nvd@nist.gov:	CVE-2003-0693
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8

sources: CERT/CC: VU#333628 // JVNDB: JVNDB-2003-000274 // CNNVD: CNNVD-200309-032 // NVD: CVE-2003-0693

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-0693

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200309-032

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 8628 // CNNVD: CNNVD-200309-032

CONFIGURATIONS

sources: JVNDB: JVNDB-2003-000274

PATCH

title:	2003120401	url:	http://support.f-secure.com/enu/corporate/supportissue/ssh/comments/comments-issue-2003120401.shtml	Trust: 0.8
title:	HPSBUX0311-302	url:	http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0311-302	Trust: 0.8
title:	HPSBUX0309-282	url:	http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0309-282	Trust: 0.8
title:	HPSBUX0311-302	url:	http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/HP-UX/HPSBUX0311-302.html	Trust: 0.8
title:	HPSBUX0309-282	url:	http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/HP-UX/HPSBUX0309-282.html	Trust: 0.8
title:	openssh	url:	http://www.miraclelinux.com/support/update/data/openssh.html	Trust: 0.8
title:	buffer.adv	url:	http://www.openssh.com/txt/buffer.adv	Trust: 0.8
title:	RHSA-2003:279	url:	https://rhn.redhat.com/errata/RHSA-2003-279.html	Trust: 0.8
title:	471	url:	http://www.ssh.com/company/newsroom/article/471/	Trust: 0.8
title:	56862	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-56862-1	Trust: 0.8
title:	56861	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-56861-1	Trust: 0.8
title:	56862	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-56862-3	Trust: 0.8
title:	56861	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-56861-3	Trust: 0.8
title:	550 OpenSSH Security Update	url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raq550.eng&nav=patchpage	Trust: 0.8
title:	TLSA-2003-53	url:	http://www.turbolinux.com/security/2003/TLSA-2003-53.txt	Trust: 0.8
title:	TLSA-2003-51	url:	http://www.turbolinux.com/security/2003/TLSA-2003-51.txt	Trust: 0.8
title:	RHSA-2003:279	url:	http://www.jp.redhat.com/support/errata/RHSA/RHSA-2003-279J.html	Trust: 0.8
title:	TLSA-2003-53	url:	http://www.turbolinux.co.jp/security/2003/TLSA-2003-53j.txt	Trust: 0.8
title:	TLSA-2003-51	url:	http://www.turbolinux.co.jp/security/2003/TLSA-2003-51j.txt	Trust: 0.8

sources: JVNDB: JVNDB-2003-000274

EXTERNAL IDS

db:	CERT/CC	id:	VU#333628	Trust: 3.2
db:	NVD	id:	CVE-2003-0693	Trust: 2.7
db:	XF	id:	13191	Trust: 1.4
db:	BID	id:	8628	Trust: 1.1
db:	OPENWALL	id:	OSS-SECURITY/2024/07/01/3	Trust: 1.0
db:	SECUNIA	id:	10156	Trust: 0.8
db:	JVNDB	id:	JVNDB-2003-000274	Trust: 0.8
db:	FULLDISC	id:	20030916 THE LOWDOWN ON SSH VULNERABILITY	Trust: 0.6
db:	FULLDISC	id:	20030915 NEW SSH EXPLOIT?	Trust: 0.6
db:	FULLDISC	id:	20030915 OPENSSH REMOTE EXPLOIT	Trust: 0.6
db:	OVAL	id:	OVAL:ORG.MITRE.OVAL:DEF:447	Trust: 0.6
db:	OVAL	id:	OVAL:ORG.MITRE.OVAL:DEF:2719	Trust: 0.6
db:	BUGTRAQ	id:	20030916 OPENSSH BUFFER MANAGEMENT BUG ADVISORY	Trust: 0.6
db:	BUGTRAQ	id:	20030917 [OPENPKG-SA-2003.040] OPENPKG SECURITY ADVISORY (OPENSSH)	Trust: 0.6
db:	BUGTRAQ	id:	20030916 [SLACKWARE-SECURITY] OPENSSH SECURITY ADVISORY (SSA:2003-259-01)	Trust: 0.6
db:	MANDRAKE	id:	MDKSA-2003:090	Trust: 0.6
db:	CERT/CC	id:	CA-2003-24	Trust: 0.6
db:	SUNALERT	id:	1000620	Trust: 0.6
db:	DEBIAN	id:	DSA-383	Trust: 0.6
db:	DEBIAN	id:	DSA-382	Trust: 0.6
db:	TRUSTIX	id:	2003-0033	Trust: 0.6
db:	REDHAT	id:	RHSA-2003:280	Trust: 0.6
db:	REDHAT	id:	RHSA-2003:279	Trust: 0.6
db:	CNNVD	id:	CNNVD-200309-032	Trust: 0.6

sources: CERT/CC: VU#333628 // BID: 8628 // JVNDB: JVNDB-2003-000274 // CNNVD: CNNVD-200309-032 // NVD: CVE-2003-0693

REFERENCES

url:	http://www.openssh.com/txt/buffer.adv	Trust: 3.7
url:	http://www.cert.org/advisories/ca-2003-24.html	Trust: 3.7
url:	http://www.kb.cert.org/vuls/id/333628	Trust: 3.4
url:	http://www.redhat.com/support/errata/rhsa-2003-280.html	Trust: 2.6
url:	http://www.debian.org/security/2003/dsa-383	Trust: 2.6
url:	http://www.debian.org/security/2003/dsa-382	Trust: 2.6
url:	http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000620.1-1	Trust: 2.6
url:	http://lists.grok.org.uk/pipermail/full-disclosure/2003-september/010146.html	Trust: 2.6
url:	http://lists.grok.org.uk/pipermail/full-disclosure/2003-september/010135.html	Trust: 2.6
url:	http://lists.grok.org.uk/pipermail/full-disclosure/2003-september/010103.html	Trust: 2.6
url:	http://www.mandriva.com/security/advisories?name=mdksa-2003:090	Trust: 2.6
url:	http://marc.info/?l=bugtraq&m=106373247528528&w=2	Trust: 2.0
url:	http://marc.info/?l=bugtraq&m=106373546332230&w=2	Trust: 2.0
url:	http://marc.info/?l=bugtraq&m=106374466212309&w=2	Trust: 2.0
url:	http://marc.info/?l=bugtraq&m=106381396120332&w=2	Trust: 2.0
url:	http://marc.info/?l=bugtraq&m=106381409220492&w=2	Trust: 2.0
url:	http://www.openwall.com/lists/oss-security/2024/07/01/3	Trust: 2.0
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/13191	Trust: 2.0
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a2719	Trust: 2.0
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a447	Trust: 2.0
url:	http://xforce.iss.net/xforce/xfdb/13191	Trust: 1.4
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=106373247528528&w=2	Trust: 1.2
url:	http://www.mindrot.org/pipermail/openssh-unix-announce/2003-september/000062.html	Trust: 0.8
url:	http://www.freebsd.org/cgi/cvsweb.cgi/ports/security/openssh/files/patch-buffer.c	Trust: 0.8
url:	http://www.secunia.com/advisories/10156/	Trust: 0.8
url:	http://www.ciac.org/ciac/bulletins/n-151.shtml	Trust: 0.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2003-0693	Trust: 0.8
url:	http://www.jpcert.or.jp/wr/2003/wr033801.txt	Trust: 0.8
url:	http://jvn.jp/cert/jvnca-2003-24	Trust: 0.8
url:	http://jvn.jp/tr/trca-2003-24	Trust: 0.8
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2003-0693	Trust: 0.8
url:	http://www.securityfocus.com/bid/8628	Trust: 0.8
url:	http://www.isskk.co.jp/support/techinfo/general/openssh144.html	Trust: 0.8
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=106381409220492&w=2	Trust: 0.6
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=106381396120332&w=2	Trust: 0.6
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=106374466212309&w=2	Trust: 0.6
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=106373546332230&w=2	Trust: 0.6
url:	http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:447	Trust: 0.6
url:	http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:2719	Trust: 0.6
url:	http://www.slackware.org/security/viewer.php?l=slackware-security&y=2003&m=slackware-security.368193	Trust: 0.3
url:	http://www.bluecoat.com/downloads/support/bcs_openssh_vulnerability.pdf	Trust: 0.3
url:	http://www.openwall.com/owl/changes-current.shtml	Trust: 0.3
url:	http://www.cisco.com/warp/public/707/cisco-sa-20030917-openssh.shtml	Trust: 0.3
url:	http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000739	Trust: 0.3
url:	http://www.freebsd.org/cgi/cvsweb.cgi/src/crypto/openssh/buffer.c.diff?r1=1.1.1.6&r2=1.1.1.7&f=h	Trust: 0.3
url:	http://www.f-secure.com/support/technical/ssh/ssh1_openssh_buffer_management.shtml	Trust: 0.3
url:	http://support.novell.com/cgi-bin/search/searchtid.cgi?/2968534.htm	Trust: 0.3
url:	http://www.netapp.com/support/	Trust: 0.3
url:	http://www.stonesoft.com/document/art/3031.html	Trust: 0.3
url:	http://www.foundrynet.com/solutions/advisories/openssh333628.html	Trust: 0.3
url:	http://www.netscreen.com/services/security/alerts/openssh_1.jsp	Trust: 0.3
url:	http://support.novell.com/cgi-bin/search/searchtid.cgi?/2967067.htm	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f56861	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f56862	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raq550.eng&nav=patchpage	Trust: 0.3
url:	http://sunsolve.sun.com/patches/linux/security.html	Trust: 0.3
url:	http://www.yellowdoglinux.com/resources/errata/ydu-20030917-1.txt	Trust: 0.3
url:	/archive/1/337921	Trust: 0.3

sources: CERT/CC: VU#333628 // BID: 8628 // JVNDB: JVNDB-2003-000274 // CNNVD: CNNVD-200309-032 // NVD: CVE-2003-0693

CREDITS

OpenSSH Security Advisory

Trust: 0.6

sources: CNNVD: CNNVD-200309-032

SOURCES

db:	CERT/CC	id:	VU#333628
db:	BID	id:	8628
db:	JVNDB	id:	JVNDB-2003-000274
db:	CNNVD	id:	CNNVD-200309-032
db:	NVD	id:	CVE-2003-0693

LAST UPDATE DATE

2024-12-11T22:49:52.269000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#333628	date:	2008-08-12T00:00:00
db:	BID	id:	8628	date:	2009-11-05T23:47:00
db:	JVNDB	id:	JVNDB-2003-000274	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200309-032	date:	2006-03-28T00:00:00
db:	NVD	id:	CVE-2003-0693	date:	2024-11-20T23:45:18.870

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#333628	date:	2003-09-16T00:00:00
db:	BID	id:	8628	date:	2003-09-16T00:00:00
db:	JVNDB	id:	JVNDB-2003-000274	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200309-032	date:	2003-09-22T00:00:00
db:	NVD	id:	CVE-2003-0693	date:	2003-09-22T04:00:00