CVE-2005-1394

Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain privileges via format string specifiers in the ARCHOME environment variable to (1) wservice or (2) lockmgr.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.digitalmunition.com/DMA%5B2005-0425a%5D.txt	Patch
http://securitytracker.com/id?1013852	Patch Vendor Advisory
http://secunia.com/advisories/15196	Vendor Advisory
http://support.esri.com/index.cfm?fa=downloads.patchesServicePacks.viewPatch&PID=14&MetaID=1015
http://marc.info/?l=full-disclosure&m=111489411524630&w=2

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:esri:arcgis:9.0:::::::*
	cpe:2.3:a:esri:arcinfo_workstation:9.0:::::::*

Information

Published : 2005-05-03 04:00

Updated : 2016-10-18 03:19

NVD link : CVE-2005-1394

Mitre link : CVE-2005-1394

JSON object : View

Products Affected

esri

arcinfo_workstation
arcgis

CWE

NVD-CWE-Other

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.digitalmunition.com/DMA%5B2005-0425a%5D.txt", "name": "http://www.digitalmunition.com/DMA%5B2005-0425a%5D.txt", "tags": ["Patch"], "refsource": "MISC"}, {"url": "http://securitytracker.com/id?1013852", "name": "1013852", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/15196", "name": "15196", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://support.esri.com/index.cfm?fa=downloads.patchesServicePacks.viewPatch&PID=14&MetaID=1015", "name": "http://support.esri.com/index.cfm?fa=downloads.patchesServicePacks.viewPatch&PID=14&MetaID=1015", "tags": [], "refsource": "CONFIRM"}, {"url": "http://marc.info/?l=full-disclosure&m=111489411524630&w=2", "name": "20050430 DMA[2005-0425a] - 'ESRI ArcGIS 9.x multiple local vulnerabilities", "tags": [], "refsource": "FULLDISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain privileges via format string specifiers in the ARCHOME environment variable to (1) wservice or (2) lockmgr."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2005-1394", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2005-05-03T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:esri:arcgis:9.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:esri:arcinfo_workstation:9.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2016-10-18T03:19Z"}