Vulnerability Description
Multiple unspecified vulnerabilities in the installer for SYSLINUX 2.01, when running setuid root, allow local users to gain privileges via unknown vectors.
CVSS Score
10.0
HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gentoo | Syslinux | 2.0.1 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/8077Vendor Advisory
- http://syslinux.zytor.com/history.php
- http://www.securityfocus.com/bid/6876Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11351
- http://secunia.com/advisories/8077Vendor Advisory
- http://syslinux.zytor.com/history.php
- http://www.securityfocus.com/bid/6876Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11351
FAQ
What is CVE-2003-1422?
CVE-2003-1422 is a vulnerability with a CVSS score of 10.0 (HIGH). Multiple unspecified vulnerabilities in the installer for SYSLINUX 2.01, when running setuid root, allow local users to gain privileges via unknown vectors.
How severe is CVE-2003-1422?
CVE-2003-1422 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-1422?
Check the references section above for vendor advisories and patch information. Affected products include: Gentoo Syslinux.