Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2005-3863

Date: November 29, 2005

Stack-based buffer overflow in kkstrtext.h in ktools library 0.3 and earlier, as used in products such as (1) centericq, (2) orpheus, (3) motor, and (4) groan, allows local users or remote attackers to execute arbitrary code via a long parameter to the VGETSTRING macro.

Severity Score

Related Resources (20)

http://www.securityfocus.com/archive/1/417906/100/0/threaded
http://security.gentoo.org/glsa/glsa-200512-11.xml
http://www.debian.org/security/2006/dsa-1088
https://people.canonical.com/~ubuntu-security/cve/CVE-2005-3863
http://secunia.com/advisories/20329
http://www.vupen.com/english/advisories/2006/2062
http://secunia.com/advisories/17768
https://exchange.xforce.ibmcloud.com/vulnerabilities/23233
http://security.gentoo.org/glsa/glsa-200608-27.xml
http://www.vupen.com/english/advisories/2005/2605
http://secunia.com/advisories/20368
http://www.osvdb.org/21161
http://secunia.com/advisories/20446
http://www.zone-h.org/en/advisories/read/id=8480/
http://www.debian.org/security/2006/dsa-1083
http://secunia.com/advisories/18081
http://www.securityfocus.com/bid/15600
https://nvd.nist.gov/vuln/detail/CVE-2005-3863
http://secunia.com/advisories/21684
https://www.mend.io/vulnerability-database/CVE-2005-3863

Severity Score

Weakness Type (CWE)

Buffer Errors

CWE-119

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): LOW
Integrity (I): LOW
Availability (A): LOW

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): LOW
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): PARTIAL
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us