Vulnerability Description
Netbus 1.5 through 1.7 allows more than one client to be connected at the same time, but only prompts the first connection for authentication, which allows remote attackers to gain access.
CVSS Score
6.8
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netbus | Netbus | 1.5 |
Related Weaknesses (CWE)
References
- http://securityreason.com/securityalert/3289Exploit
- http://www.securityfocus.com/archive/1/320980Exploit
- http://www.securityfocus.com/bid/7538
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11982
- http://securityreason.com/securityalert/3289Exploit
- http://www.securityfocus.com/archive/1/320980Exploit
- http://www.securityfocus.com/bid/7538
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11982
FAQ
What is CVE-2003-1475?
CVE-2003-1475 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Netbus 1.5 through 1.7 allows more than one client to be connected at the same time, but only prompts the first connection for authentication, which allows remote attackers to gain access.
How severe is CVE-2003-1475?
CVE-2003-1475 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-1475?
Check the references section above for vendor advisories and patch information. Affected products include: Netbus Netbus.