mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 09:11:28 +00:00
193 lines
5.9 KiB
JSON
193 lines
5.9 KiB
JSON
{
|
|
"id": "CVE-2005-1125",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2005-05-02T04:00:00.000",
|
|
"lastModified": "2024-11-20T23:56:40.037",
|
|
"vulnStatus": "Modified",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Race condition in libsafe 2.0.16 and earlier, when running in multi-threaded applications, allows attackers to bypass libsafe protection and exploit other vulnerabilities before the _libsafe_die function call is completed."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
|
|
"baseScore": 5.1,
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "HIGH",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "PARTIAL",
|
|
"integrityImpact": "PARTIAL",
|
|
"availabilityImpact": "PARTIAL"
|
|
},
|
|
"baseSeverity": "MEDIUM",
|
|
"exploitabilityScore": 4.9,
|
|
"impactScore": 6.4,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "NVD-CWE-Other"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "6D262BDF-A782-4843-A62A-D8E4A85DCD9B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "25908E92-AD76-4CD0-A194-C3DF80EA730F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7281A0A9-BE74-4FD2-8201-105B49F4DE41"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "190E9A51-D9FD-4F35-93D6-D98CD8487684"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "191BFDD7-31A8-4ABC-B81D-D6848D3FF7C8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "91BACFC3-0634-47CD-B8C4-6CC7A420F8BB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.7:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "22DCBF5B-59C6-4740-BFE2-47DF929923BF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.8:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8049AABC-72B1-4360-991E-B141E47DAC72"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.9:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7F927CFC-B432-49BD-AA19-7F4B0E593FE6"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.10:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3CD90005-E191-4E07-B432-B836ECC75349"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.11:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "6565DBC4-0E63-4F18-9F49-A418C4111E99"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.12:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F1595C2B-3A59-4BBD-92C0-632C858D428B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.13:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "116A7D0C-0D20-44A9-A570-DBFE6D5D4127"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.14:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8310254F-FDD9-481D-9E2C-A5D5A29ECBEC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.15:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "EE7409AC-B66F-4BEA-950C-EB3D698ACBFA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:avaya:libsafe:2.0.16:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "920D32B9-06B0-426C-981F-61730444AC4C"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://www.overflow.pl/adv/libsafebypass.txt",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Exploit",
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/395999",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Exploit",
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/13190",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Exploit"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.overflow.pl/adv/libsafebypass.txt",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Exploit",
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/395999",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Exploit",
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/13190",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Exploit"
|
|
]
|
|
}
|
|
]
|
|
} |