NVD

Id
9622  
Name
CVE-2011-2903  
Description
Heap-based buffer overflow in tcptrack before 1.4.2 might allow attackers to execute arbitrary code via a long command line argument. NOTE: this is only a vulnerability in limited scenarios in which tcptrack is "configured as a handler for other applications." This issue might not qualify for inclusion in CVE.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2011-09-02  
Modified Date
2011-09-15  
Seq
2011-2903  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
54975 9622 CVE-2011-2903 [oss-security] 20110809 Re: CVE request: heap overflow in tcptrack < 1.4.2  View
54976 9622 CVE-2011-2903 [oss-security] 20110831 Re: CVE request: heap overflow in tcptrack < 1.4.2  View
54977 9622 CVE-2011-2903 http://www.rhythm.cx/~steve/devel/tcptrack/  View
54978 9622 CVE-2011-2903 49352  View
54979 9622 CVE-2011-2903 tcptrack-commandline-bo(69467)  View
54980 9622 CVE-2011-2903 https://bugs.gentoo.org/show_bug.cgi?id=377917  View
54981 9622 CVE-2011-2903 https://bugzilla.redhat.com/show_bug.cgi?id=729096  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
34588 JVNDB-2011-004830 tcptrack におけるヒープベースのバッファオーバーフローの脆弱性 tcptrack には、ヒープベースのバッファオーバーフローの脆弱性が存在します。 CVE-2011-2903 50810 CVE-2011-2903 9622 6.8 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-004830.html 2011-09-02 2012-03-27 View