Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2003-0955

OpenBSD kernel 3.3 and 3.4 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code in 3.4 via a program with an invalid header that is not properly handled by (1) ibcs2_exec.c in the iBCS2 emulation (compat_ibcs2) or (2) exec_elf.c, which leads to a stack-based buffer overflow.

  • Published: Dec 15, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2003-0955
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
openbsd / openbsd 3.3 3.3.x
openbsd / openbsd 3.4 3.4.x