Upstream information
Description
A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitrary code by causing an incorrect amount of memory to be freed and corrupting the heap, a different vulnerability than CVE-2003-0695.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
| National Vulnerability Database | |
|---|---|
| Base Score | 10 |
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
| Access Vector | Network |
| Access Complexity | Low |
| Authentication | None |
| Confidentiality Impact | Complete |
| Integrity Impact | Complete |
| Availability Impact | Complete |
SUSE Security Advisories:
- SuSE-SA:2003:038, published Tuesday, Sep 16 2003 22:15 MEST
- SuSE-SA:2003:039, published Thursday, Sep 18 2003 20:00 MEST
SUSE Timeline for this CVE
CVE page created: Fri Jun 28 00:26:25 2013CVE page last modified: Fri Dec 8 16:09:03 2023