CVE-2003-0365

{"id": "CVE-2003-0365", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2003-06-16T04:00:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=105427404625027&w=2", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "ICQLite 2003a creates the ICQ Lite directory with an ACE for \"Full Control\" privileges for Interactive Users, which allows local users to gain privileges as other users by replacing the executables with malicious programs."}, {"lang": "es", "value": "ICQLite 2003a crea el directorio ICQ Lite con privilegios de \"Control Total\" para usuarios interactivos, lo que permite que usuarios locales adquieran privilegios de otros usuarios reemplazando los ejecutables con programas da\u00f1inos."}], "lastModified": "2016-10-18T02:33:00.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:icq_inc:icqlite:2003a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBC57308-95D9-487B-B14B-2B1081F4DB91"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}