CVE-2003-0703 in KisMACinfo

Summary

KisMAC before 0.05d trusts user-supplied variables to load arbitrary kernels or kernel modules, which allows local users to gain privileges via the $DRIVER_KEXT environment variable as used in (1) viha_driver.sh, (2) macjack_load.sh, or (3) airojack_load.sh, or (4) via "similar techniques" using exchangeKernel.sh.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

08/24/2003

Disclosure

09/17/2003

Moderation

VulDB entry created

Entries

VDB-20817 (1)

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

8.4

EPSS

0.00047

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-0703
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0703
CVE Details	https://www.cvedetails.com/cve/CVE-2003-0703/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!