CVE-2003-0361 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

gPS before 1.1.0 does not properly follow the rgpsp connection source acceptation policy as specified in the rgpsp.conf file, which could allow unauthorized remote attackers to connect to rgpsp.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Debian	Debian Linux	0.9.1

References

http://gps.seul.org/changelog.htmlPatch
http://www.debian.org/security/2003/dsa-307PatchVendor Advisory
http://gps.seul.org/changelog.htmlPatch
http://www.debian.org/security/2003/dsa-307PatchVendor Advisory

FAQ

What is CVE-2003-0361?

CVE-2003-0361 is a vulnerability with a CVSS score of 7.5 (HIGH). gPS before 1.1.0 does not properly follow the rgpsp connection source acceptation policy as specified in the rgpsp.conf file, which could allow unauthorized remote attackers to connect to rgpsp.

How severe is CVE-2003-0361?

CVE-2003-0361 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2003-0361?

Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux.