CVE-2005-3863

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.zone-h.org/en/advisories/read/id=8480/", "name": "http://www.zone-h.org/en/advisories/read/id=8480/", "tags": ["Vendor Advisory"], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/15600", "name": "15600", "tags": [], "refsource": "BID"}, {"url": "http://secunia.com/advisories/17768", "name": "17768", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.osvdb.org/21161", "name": "21161", "tags": [], "refsource": "OSVDB"}, {"url": "http://security.gentoo.org/glsa/glsa-200512-11.xml", "name": "GLSA-200512-11", "tags": [], "refsource": "GENTOO"}, {"url": "http://secunia.com/advisories/18081", "name": "18081", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2006/dsa-1083", "name": "DSA-1083", "tags": ["Patch", "Vendor Advisory"], "refsource": "DEBIAN"}, {"url": "http://secunia.com/advisories/20329", "name": "20329", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/20368", "name": "20368", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2006/dsa-1088", "name": "DSA-1088", "tags": ["Patch", "Vendor Advisory"], "refsource": "DEBIAN"}, {"url": "http://secunia.com/advisories/20446", "name": "20446", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://security.gentoo.org/glsa/glsa-200608-27.xml", "name": "GLSA-200608-27", "tags": [], "refsource": "GENTOO"}, {"url": "http://secunia.com/advisories/21684", "name": "21684", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2006/2062", "name": "ADV-2006-2062", "tags": ["Vendor Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2005/2605", "name": "ADV-2005-2605", "tags": ["Vendor Advisory"], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/23233", "name": "ktools-kkstrtext-bo(23233)", "tags": [], "refsource": "XF"}, {"url": "http://www.securityfocus.com/archive/1/417906/100/0/threaded", "name": "20051127 ZRCSA-200503 - ktools Buffer Overflow Vulnerability", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Stack-based buffer overflow in kkstrtext.h in ktools library 0.3 and earlier, as used in products such as (1) centericq, (2) orpheus, (3) motor, and (4) groan, allows local users or remote attackers to execute arbitrary code via a long parameter to the VGETSTRING macro."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-119"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2005-3863", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2005-11-29T11:03Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:ktools:ktools:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "0.3"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-19T15:39Z"}