Sign-up

ID

VAR-200310-0017


CVE

CVE-2003-1150


TITLE

Novell PMAP.NLM Remote buffer overflow vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200310-076

DESCRIPTION

Buffer overflow in the portmapper service (PMAP.NLM) in Novell NetWare 6 SP3 and ZenWorks for Desktops 3.2 SP2 through 4.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors. Novell has reported that the PMAP.NLM component of NetWare/ZenWorks is prone to a buffer overrun vulnerability

Trust: 1.17

sources: NVD: CVE-2003-1150 // BID: 8907

AFFECTED PRODUCTS

vendor:novellmodel:zenworks desktopsscope:eqversion:4.0

Trust: 1.6

vendor:novellmodel:zenworks desktopsscope:eqversion:3.2

Trust: 1.6

vendor:novellmodel:netwarescope:eqversion:6.0

Trust: 1.6

vendor:novellmodel:zenworks desktopsscope:eqversion:4.0.1

Trust: 1.6

vendor:novellmodel:zenworks for desktopsscope:eqversion:4.0.1

Trust: 0.3

vendor:novellmodel:zenworks for desktopsscope:eqversion:4.0

Trust: 0.3

vendor:novellmodel:zenworks for desktops sp2scope:eqversion:3.2

Trust: 0.3

vendor:novellmodel:netware sp3scope:eqversion:6.0

Trust: 0.3

sources: BID: 8907 // CNNVD: CNNVD-200310-076 // NVD: CVE-2003-1150

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD: CVE-2003-1150
value: HIGH

Trust: 1.0

CNNVD: CNNVD-200310-076
value: HIGH

Trust: 0.6

NVD: CVE-2003-1150
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: FALSE
obtainUserPrivilege: FALSE
obtainOtherPrivilege: FALSE
userInteractionRequired: FALSE
version: 2.0

Trust: 1.0

sources: CNNVD: CNNVD-200310-076 // NVD: CVE-2003-1150

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-1150

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200310-076

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 8907 // CNNVD: CNNVD-200310-076

CONFIGURATIONS

sources:
            
            
            NVD: CVE-2003-1150

EXTERNAL IDS
db:BIDid:8907
Trust: 1.9
db:SECUNIAid:10100
Trust: 1.6
db:NVDid:CVE-2003-1150
Trust: 1.6
db:XFid:13564
Trust: 0.6
db:CNNVDid:CNNVD-200310-076
Trust: 0.6
sources:
            
            
            BID: 8907 // 
            
            
            
            CNNVD: CNNVD-200310-076 // 
            
            
            
            NVD: CVE-2003-1150

REFERENCES
url:http://www.securityfocus.com/bid/8907
Trust: 1.6
url:http://secunia.com/advisories/10100
Trust: 1.6
url:http://support.novell.com/cgi-bin/search/searchtid.cgi?/10088194.htm
Trust: 1.3
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/13564
Trust: 1.0
url:http://xforce.iss.net/xforce/xfdb/13564
Trust: 0.6
sources:
            
            
            BID: 8907 // 
            
            
            
            CNNVD: CNNVD-200310-076 // 
            
            
            
            NVD: CVE-2003-1150

CREDITS
Novell
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200310-076

SOURCES
db:BIDid:8907
db:CNNVDid:CNNVD-200310-076
db:NVDid:CVE-2003-1150

LAST UPDATE DATE
2022-05-04T09:14:51.445000+00:00

SOURCES UPDATE DATE
db:BIDid:8907date:2003-10-27T00:00:00
db:CNNVDid:CNNVD-200310-076date:2005-10-20T00:00:00
db:NVDid:CVE-2003-1150date:2017-07-11T01:29:00

SOURCES RELEASE DATE
db:BIDid:8907date:2003-10-27T00:00:00
db:CNNVDid:CNNVD-200310-076date:2003-10-27T00:00:00
db:NVDid:CVE-2003-1150date:2003-10-27T05:00:00