CVE-2003-0001 - Vulnerability Details

Vendors	Products
Freebsd	Freebsd
Linux	Linux Kernel
Microsoft	Windows 2000 Windows 2000 Terminal Services
Netbsd	Netbsd
Redhat	Linux

Package	CPE	Advisory	Released Date
Red Hat Linux 6.2
	cpe:/o:redhat:linux:6.2	RHSA-2003:088	2003-03-20T00:00:00Z
Red Hat Linux 7.0
	cpe:/o:redhat:linux:7.0	RHSA-2003:088	2003-03-20T00:00:00Z
Red Hat Linux 7.1
	cpe:/o:redhat:linux:7.1	RHSA-2003:025	2003-02-04T00:00:00Z
	cpe:/o:redhat:linux:7.1	RHSA-2003:190	2003-06-25T00:00:00Z
Red Hat Linux 7.2
	cpe:/o:redhat:linux:7.2	RHSA-2003:025	2003-02-04T00:00:00Z
Red Hat Linux 7.3
	cpe:/o:redhat:linux:7.3	RHSA-2003:025	2003-02-04T00:00:00Z
Red Hat Linux 8.0
	cpe:/o:redhat:linux:8.0	RHSA-2003:025	2003-02-04T00:00:00Z

Link	Providers
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html
http://marc.info/?l=bugtraq&m=104222046632243&w=2
http://secunia.com/advisories/7996
http://www.atstake.com/research/advisories/2003/a010603-1.txt
http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf
http://www.kb.cert.org/vuls/id/412115
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.osvdb.org/9962
http://www.redhat.com/support/errata/RHSA-2003-025.html
http://www.redhat.com/support/errata/RHSA-2003-088.html
http://www.securityfocus.com/archive/1/305335/30/26420/threaded
http://www.securityfocus.com/archive/1/307564/30/26270/threaded
http://www.securitytracker.com/id/1031583
http://www.securitytracker.com/id/1040185
https://nvd.nist.gov/vuln/detail/CVE-2003-0001
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665
https://www.cve.org/CVERecord?id=CVE-2003-0001

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2003-01-06T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-19T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20030117 Re: More information regarding Etherleak", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/307564/30/26270/threaded"}, {"name": "1031583", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1031583"}, {"name": "9962", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/9962"}, {"name": "RHSA-2003:088", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2003-088.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"name": "20030110 More information regarding Etherleak", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=104222046632243&w=2"}, {"name": "VU#412115", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/412115"}, {"name": "20030106 Etherleak: Ethernet frame padding information leakage (A010603-1)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/305335/30/26420/threaded"}, {"name": "oval:org.mitre.oval:def:2665", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665"}, {"name": "20030110 More information regarding Etherleak", "tags": ["mailing-list", "x_refsource_VULNWATCH"], "url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html"}, {"name": "RHSA-2003:025", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2003-025.html"}, {"name": "7996", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/7996"}, {"name": "A010603-1", "tags": ["vendor-advisory", "x_refsource_ATSTAKE"], "url": "http://www.atstake.com/research/advisories/2003/a010603-1.txt"}, {"name": "1040185", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1040185"}, {"tags": ["x_refsource_MISC"], "url": "http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2003-0001", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20030117 Re: More information regarding Etherleak", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/307564/30/26270/threaded"}, {"name": "1031583", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1031583"}, {"name": "9962", "refsource": "OSVDB", "url": "http://www.osvdb.org/9962"}, {"name": "RHSA-2003:088", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2003-088.html"}, {"name": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"name": "20030110 More information regarding Etherleak", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=104222046632243&w=2"}, {"name": "VU#412115", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/412115"}, {"name": "20030106 Etherleak: Ethernet frame padding information leakage (A010603-1)", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/305335/30/26420/threaded"}, {"name": "oval:org.mitre.oval:def:2665", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665"}, {"name": "20030110 More information regarding Etherleak", "refsource": "VULNWATCH", "url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html"}, {"name": "RHSA-2003:025", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2003-025.html"}, {"name": "7996", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/7996"}, {"name": "A010603-1", "refsource": "ATSTAKE", "url": "http://www.atstake.com/research/advisories/2003/a010603-1.txt"}, {"name": "1040185", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1040185"}, {"name": "http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf", "refsource": "MISC", "url": "http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T01:36:25.373Z"}, "title": "CVE Program Container", "references": [{"name": "20030117 Re: More information regarding Etherleak", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/307564/30/26270/threaded"}, {"name": "1031583", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1031583"}, {"name": "9962", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/9962"}, {"name": "RHSA-2003:088", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2003-088.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"name": "20030110 More information regarding Etherleak", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=104222046632243&w=2"}, {"name": "VU#412115", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/412115"}, {"name": "20030106 Etherleak: Ethernet frame padding information leakage (A010603-1)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/305335/30/26420/threaded"}, {"name": "oval:org.mitre.oval:def:2665", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665"}, {"name": "20030110 More information regarding Etherleak", "tags": ["mailing-list", "x_refsource_VULNWATCH", "x_transferred"], "url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html"}, {"name": "RHSA-2003:025", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2003-025.html"}, {"name": "7996", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/7996"}, {"name": "A010603-1", "tags": ["vendor-advisory", "x_refsource_ATSTAKE", "x_transferred"], "url": "http://www.atstake.com/research/advisories/2003/a010603-1.txt"}, {"name": "1040185", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1040185"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2003-0001", "datePublished": "2003-01-08T05:00:00", "dateReserved": "2003-01-02T00:00:00", "dateUpdated": "2024-08-08T01:36:25.373Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2003-01-06T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2018-10-19T14:57:01 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : 20030117 Re: More information regarding Etherleak (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://www.securityfocus.com/archive/1/307564/30/26270/threaded (string)

}

1 : { »

name : 1031583 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1031583 (string)

}

2 : { »

name : 9962 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_OSVDB (string)

]

url : http://www.osvdb.org/9962 (string)

}

3 : { »

name : RHSA-2003:088 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-088.html (string)

}

4 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html (string)

}

5 : { »

name : 20030110 More information regarding Etherleak (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://marc.info/?l=bugtraq&m=104222046632243&w=2 (string)

}

6 : { »

name : VU#412115 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT-VN (string)

]

url : http://www.kb.cert.org/vuls/id/412115 (string)

}

7 : { »

name : 20030106 Etherleak: Ethernet frame padding information leakage (A010603-1) (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://www.securityfocus.com/archive/1/305335/30/26420/threaded (string)

}

8 : { »

name : oval:org.mitre.oval:def:2665 (string)

tags : [ »

0 : vdb-entry (string)

1 : signature (string)

2 : x_refsource_OVAL (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665 (string)

}

9 : { »

name : 20030110 More information regarding Etherleak (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_VULNWATCH (string)

]

url : http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html (string)

}

10 : { »

name : RHSA-2003:025 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-025.html (string)

}

11 : { »

name : 7996 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_SECUNIA (string)

]

url : http://secunia.com/advisories/7996 (string)

}

12 : { »

name : A010603-1 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_ATSTAKE (string)

]

url : http://www.atstake.com/research/advisories/2003/a010603-1.txt (string)

}

13 : { »

name : 1040185 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1040185 (string)

}

14 : { »

tags : [ »

0 : x_refsource_MISC (string)

]

url : http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2003-0001 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : 20030117 Re: More information regarding Etherleak (string)

refsource : BUGTRAQ (string)

url : http://www.securityfocus.com/archive/1/307564/30/26270/threaded (string)

}

1 : { »

name : 1031583 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1031583 (string)

}

2 : { »

name : 9962 (string)

refsource : OSVDB (string)

url : http://www.osvdb.org/9962 (string)

}

3 : { »

name : RHSA-2003:088 (string)

refsource : REDHAT (string)

url : http://www.redhat.com/support/errata/RHSA-2003-088.html (string)

}

4 : { »

name : http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html (string)

refsource : CONFIRM (string)

url : http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html (string)

}

5 : { »

name : 20030110 More information regarding Etherleak (string)

refsource : BUGTRAQ (string)

url : http://marc.info/?l=bugtraq&m=104222046632243&w=2 (string)

}

6 : { »

name : VU#412115 (string)

refsource : CERT-VN (string)

url : http://www.kb.cert.org/vuls/id/412115 (string)

}

7 : { »

name : 20030106 Etherleak: Ethernet frame padding information leakage (A010603-1) (string)

refsource : BUGTRAQ (string)

url : http://www.securityfocus.com/archive/1/305335/30/26420/threaded (string)

}

8 : { »

name : oval:org.mitre.oval:def:2665 (string)

refsource : OVAL (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665 (string)

}

9 : { »

name : 20030110 More information regarding Etherleak (string)

refsource : VULNWATCH (string)

url : http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html (string)

}

10 : { »

name : RHSA-2003:025 (string)

refsource : REDHAT (string)

url : http://www.redhat.com/support/errata/RHSA-2003-025.html (string)

}

11 : { »

name : 7996 (string)

refsource : SECUNIA (string)

url : http://secunia.com/advisories/7996 (string)

}

12 : { »

name : A010603-1 (string)

refsource : ATSTAKE (string)

url : http://www.atstake.com/research/advisories/2003/a010603-1.txt (string)

}

13 : { »

name : 1040185 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1040185 (string)

}

14 : { »

name : http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf (string)

refsource : MISC (string)

url : http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-08T01:36:25.373Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : 20030117 Re: More information regarding Etherleak (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/archive/1/307564/30/26270/threaded (string)

}

1 : { »

name : 1031583 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1031583 (string)

}

2 : { »

name : 9962 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_OSVDB (string)

2 : x_transferred (string)

]

url : http://www.osvdb.org/9962 (string)

}

3 : { »

name : RHSA-2003:088 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

2 : x_transferred (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-088.html (string)

}

4 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html (string)

}

5 : { »

name : 20030110 More information regarding Etherleak (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=104222046632243&w=2 (string)

}

6 : { »

name : VU#412115 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT-VN (string)

2 : x_transferred (string)

]

url : http://www.kb.cert.org/vuls/id/412115 (string)

}

7 : { »

name : 20030106 Etherleak: Ethernet frame padding information leakage (A010603-1) (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/archive/1/305335/30/26420/threaded (string)

}

8 : { »

name : oval:org.mitre.oval:def:2665 (string)

tags : [ »

0 : vdb-entry (string)

1 : signature (string)

2 : x_refsource_OVAL (string)

3 : x_transferred (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665 (string)

}

9 : { »

name : 20030110 More information regarding Etherleak (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_VULNWATCH (string)

2 : x_transferred (string)

]

url : http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html (string)

}

10 : { »

name : RHSA-2003:025 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

2 : x_transferred (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-025.html (string)

}

11 : { »

name : 7996 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_SECUNIA (string)

2 : x_transferred (string)

]

url : http://secunia.com/advisories/7996 (string)

}

12 : { »

name : A010603-1 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_ATSTAKE (string)

2 : x_transferred (string)

]

url : http://www.atstake.com/research/advisories/2003/a010603-1.txt (string)

}

13 : { »

name : 1040185 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1040185 (string)

}

14 : { »

tags : [ »

0 : x_refsource_MISC (string)

1 : x_transferred (string)

]

url : http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2003-0001 (string)

datePublished : 2003-01-08T05:00:00 (string)

dateReserved : 2003-01-02T00:00:00 (string)

dateUpdated : 2024-08-08T01:36:25.373Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:freebsd:freebsd:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "DF49BF03-C25E-4737-84D5-892895C86C58", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:4.3:*:*:*:*:*:*:*", "matchCriteriaId": "D2019E0E-426B-43AF-8904-1B811AE171E8", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:4.4:*:*:*:*:*:*:*", "matchCriteriaId": "55C5FC1A-1253-4390-A4FC-573BB14EA937", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:4.5:*:*:*:*:*:*:*", "matchCriteriaId": "44308D13-D935-4FF8-AB52-F0E115ED1AD2", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:4.6:*:*:*:*:*:*:*", "matchCriteriaId": "9C001822-FDF8-497C-AC2C-B59A00E9ACD2", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:4.7:*:*:*:*:*:*:*", "matchCriteriaId": "B86C77AB-B8FF-4376-9B4E-C88417396F3D", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "55B85D5B-4EA1-4FCF-8D50-9C54E8FDA92F", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "01408EC0-9C2D-4A44-8080-D7FC7E1A1FA1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "5F49A384-7222-41F3-9BE1-4E18C00E50A6", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "05520FE3-C48D-42E8-BC24-C2396BD46CBA", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "D865FBB6-E07D-492F-A75E-168B06C8ADEE", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.6:*:*:*:*:*:*:*", "matchCriteriaId": "598F24C2-0366-4799-865C-5EE4572B734B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.7:*:*:*:*:*:*:*", "matchCriteriaId": "D0399660-6385-45AB-9785-E504D8788146", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.8:*:*:*:*:*:*:*", "matchCriteriaId": "DCBC50EA-130C-41B7-83EA-C523B3C3AAD7", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.9:*:*:*:*:*:*:*", "matchCriteriaId": "B91F6CBE-400F-4D0B-B893-34577B47A342", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.10:*:*:*:*:*:*:*", "matchCriteriaId": "1548ECFD-FCB5-4AE0-9788-42F61F25489F", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.11:*:*:*:*:*:*:*", "matchCriteriaId": "6ABB9787-5497-4BDC-8952-F99CF60A89BD", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.12:*:*:*:*:*:*:*", "matchCriteriaId": "615F6BA2-CD51-4159-B28A-A018CA9FC25C", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.13:*:*:*:*:*:*:*", "matchCriteriaId": "093848CB-68A1-4258-8357-373A477FE4E2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.14:*:*:*:*:*:*:*", "matchCriteriaId": "E275F440-A427-465F-B314-BF0730C781DB", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.15:*:*:*:*:*:*:*", "matchCriteriaId": "98651D39-60CF-409F-8276-DBBB56B972AA", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.16:*:*:*:*:*:*:*", "matchCriteriaId": "067B8E09-C923-4DDA-92DB-4A2892CB526A", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.17:*:*:*:*:*:*:*", "matchCriteriaId": "9EBE3738-E530-4EC6-9FC6-1A063605BE05", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:*:*:*:*:*:*:*", "matchCriteriaId": "474384F1-FB2D-4C00-A4CD-0C2C5AE42DB4", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:*:*:*:*:*:*:*", "matchCriteriaId": "F677E992-8D37-438F-97DF-9D98B28F020C", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.4.20:*:*:*:*:*:*:*", "matchCriteriaId": "476687F9-722B-490C-BD0B-B5F2CD7891DC", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*", "matchCriteriaId": "4E545C63-FE9C-4CA1-AF0F-D999D84D2AFD", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*", "matchCriteriaId": "294EBA01-147B-4DA0-937E-ACBB655EDE53", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "4E8B7346-F2AA-434C-A048-7463EC1BB117", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000_terminal_services:*:*:*:*:*:*:*:*", "matchCriteriaId": "9D34EFE5-22B7-4E8D-B5B2-2423C37CFFA7", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp1:*:*:*:*:*:*", "matchCriteriaId": "8208AFC9-0EFC-4A90-AD5A-FD94F5542885", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "4D4168AE-D19E-482E-8F2B-3E798B2D84E7", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:*", "matchCriteriaId": "E10D9BF9-FCC7-4680-AD3A-95757FC005EA", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "78E8C3A4-9FA7-4F2A-8C65-D4404715E674", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "7AC78BA4-70F4-4B9F-93C2-B107E4DCC418", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "28A10F5A-067E-4DD8-B585-ABCD6F6B324E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak."}, {"lang": "es", "value": "M\u00faltiples controladores de dispositivo (device drivers) de Tarjetas de Interfaz de Red (Network Interface Card - NIC) Ethernet no rellenan las tramas con bytes nulos, lo que permite a atacantes remotos obtener informaci\u00f3n de paquetes anteriores o memoria del kernel usando paquetes malformados, como ha sido demostrado por Etherleak."}], "id": "CVE-2003-0001", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-01-17T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=104222046632243&w=2"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/7996"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.atstake.com/research/advisories/2003/a010603-1.txt"}, {"source": "cve@mitre.org", "url": "http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/412115"}, {"source": "cve@mitre.org", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/9962"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2003-025.html"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2003-088.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/305335/30/26420/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/307564/30/26270/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id/1031583"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id/1040185"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=104222046632243&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/7996"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.atstake.com/research/advisories/2003/a010603-1.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/412115"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/9962"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2003-025.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2003-088.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/305335/30/26420/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/307564/30/26270/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1031583"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1040185"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:freebsd:freebsd:4.2:*:*:*:*:*:*:* (string)

matchCriteriaId : DF49BF03-C25E-4737-84D5-892895C86C58 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:freebsd:freebsd:4.3:*:*:*:*:*:*:* (string)

matchCriteriaId : D2019E0E-426B-43AF-8904-1B811AE171E8 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:freebsd:freebsd:4.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 55C5FC1A-1253-4390-A4FC-573BB14EA937 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:freebsd:freebsd:4.5:*:*:*:*:*:*:* (string)

matchCriteriaId : 44308D13-D935-4FF8-AB52-F0E115ED1AD2 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:freebsd:freebsd:4.6:*:*:*:*:*:*:* (string)

matchCriteriaId : 9C001822-FDF8-497C-AC2C-B59A00E9ACD2 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:freebsd:freebsd:4.7:*:*:*:*:*:*:* (string)

matchCriteriaId : B86C77AB-B8FF-4376-9B4E-C88417396F3D (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 55B85D5B-4EA1-4FCF-8D50-9C54E8FDA92F (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 01408EC0-9C2D-4A44-8080-D7FC7E1A1FA1 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 5F49A384-7222-41F3-9BE1-4E18C00E50A6 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 05520FE3-C48D-42E8-BC24-C2396BD46CBA (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.5:*:*:*:*:*:*:* (string)

matchCriteriaId : D865FBB6-E07D-492F-A75E-168B06C8ADEE (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.6:*:*:*:*:*:*:* (string)

matchCriteriaId : 598F24C2-0366-4799-865C-5EE4572B734B (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.7:*:*:*:*:*:*:* (string)

matchCriteriaId : D0399660-6385-45AB-9785-E504D8788146 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.8:*:*:*:*:*:*:* (string)

matchCriteriaId : DCBC50EA-130C-41B7-83EA-C523B3C3AAD7 (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.9:*:*:*:*:*:*:* (string)

matchCriteriaId : B91F6CBE-400F-4D0B-B893-34577B47A342 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.10:*:*:*:*:*:*:* (string)

matchCriteriaId : 1548ECFD-FCB5-4AE0-9788-42F61F25489F (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.11:*:*:*:*:*:*:* (string)

matchCriteriaId : 6ABB9787-5497-4BDC-8952-F99CF60A89BD (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.12:*:*:*:*:*:*:* (string)

matchCriteriaId : 615F6BA2-CD51-4159-B28A-A018CA9FC25C (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.13:*:*:*:*:*:*:* (string)

matchCriteriaId : 093848CB-68A1-4258-8357-373A477FE4E2 (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.14:*:*:*:*:*:*:* (string)

matchCriteriaId : E275F440-A427-465F-B314-BF0730C781DB (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.15:*:*:*:*:*:*:* (string)

matchCriteriaId : 98651D39-60CF-409F-8276-DBBB56B972AA (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.16:*:*:*:*:*:*:* (string)

matchCriteriaId : 067B8E09-C923-4DDA-92DB-4A2892CB526A (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.17:*:*:*:*:*:*:* (string)

matchCriteriaId : 9EBE3738-E530-4EC6-9FC6-1A063605BE05 (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.18:*:*:*:*:*:*:* (string)

matchCriteriaId : 474384F1-FB2D-4C00-A4CD-0C2C5AE42DB4 (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.19:*:*:*:*:*:*:* (string)

matchCriteriaId : F677E992-8D37-438F-97DF-9D98B28F020C (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:o:linux:linux_kernel:2.4.20:*:*:*:*:*:*:* (string)

matchCriteriaId : 476687F9-722B-490C-BD0B-B5F2CD7891DC (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 4E545C63-FE9C-4CA1-AF0F-D999D84D2AFD (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:* (string)

matchCriteriaId : 294EBA01-147B-4DA0-937E-ACBB655EDE53 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:* (string)

matchCriteriaId : 4E8B7346-F2AA-434C-A048-7463EC1BB117 (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:o:microsoft:windows_2000_terminal_services:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 9D34EFE5-22B7-4E8D-B5B2-2423C37CFFA7 (string)

vulnerable : true (boolean)

}

30 : { »

criteria : cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp1:*:*:*:*:*:* (string)

matchCriteriaId : 8208AFC9-0EFC-4A90-AD5A-FD94F5542885 (string)

vulnerable : true (boolean)

}

31 : { »

criteria : cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp2:*:*:*:*:*:* (string)

matchCriteriaId : 4D4168AE-D19E-482E-8F2B-3E798B2D84E7 (string)

vulnerable : true (boolean)

}

32 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:* (string)

matchCriteriaId : E10D9BF9-FCC7-4680-AD3A-95757FC005EA (string)

vulnerable : true (boolean)

}

33 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 78E8C3A4-9FA7-4F2A-8C65-D4404715E674 (string)

vulnerable : true (boolean)

}

34 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:* (string)

matchCriteriaId : DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47 (string)

vulnerable : true (boolean)

}

35 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 7AC78BA4-70F4-4B9F-93C2-B107E4DCC418 (string)

vulnerable : true (boolean)

}

36 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:* (string)

matchCriteriaId : 28A10F5A-067E-4DD8-B585-ABCD6F6B324E (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak. (string)

}

1 : { »

lang : es (string)

value : Múltiples controladores de dispositivo (device drivers) de Tarjetas de Interfaz de Red (Network Interface Card - NIC) Ethernet no rellenan las tramas con bytes nulos, lo que permite a atacantes remotos obtener información de paquetes anteriores o memoria del kernel usando paquetes malformados, como ha sido demostrado por Etherleak. (string)

}

]

id : CVE-2003-0001 (string)

lastModified : 2025-04-03T01:03:51.193 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : NONE (string)

baseScore : 5 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:N/C:P/I:N/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2003-01-17T05:00:00.000 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

url : http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html (string)

}

1 : { »

source : cve@mitre.org (string)

url : http://marc.info/?l=bugtraq&m=104222046632243&w=2 (string)

}

2 : { »

source : cve@mitre.org (string)

url : http://secunia.com/advisories/7996 (string)

}

3 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://www.atstake.com/research/advisories/2003/a010603-1.txt (string)

}

4 : { »

source : cve@mitre.org (string)

url : http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf (string)

}

5 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

1 : US Government Resource (string)

]

url : http://www.kb.cert.org/vuls/id/412115 (string)

}

6 : { »

source : cve@mitre.org (string)

url : http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html (string)

}

7 : { »

source : cve@mitre.org (string)

url : http://www.osvdb.org/9962 (string)

}

8 : { »

source : cve@mitre.org (string)

url : http://www.redhat.com/support/errata/RHSA-2003-025.html (string)

}

9 : { »

source : cve@mitre.org (string)

url : http://www.redhat.com/support/errata/RHSA-2003-088.html (string)

}

10 : { »

source : cve@mitre.org (string)

url : http://www.securityfocus.com/archive/1/305335/30/26420/threaded (string)

}

11 : { »

source : cve@mitre.org (string)

url : http://www.securityfocus.com/archive/1/307564/30/26270/threaded (string)

}

12 : { »

source : cve@mitre.org (string)

url : http://www.securitytracker.com/id/1031583 (string)

}

13 : { »

source : cve@mitre.org (string)

url : http://www.securitytracker.com/id/1040185 (string)

}

14 : { »

source : cve@mitre.org (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665 (string)

}

15 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0016.html (string)

}

16 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://marc.info/?l=bugtraq&m=104222046632243&w=2 (string)

}

17 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://secunia.com/advisories/7996 (string)

}

18 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://www.atstake.com/research/advisories/2003/a010603-1.txt (string)

}

19 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.atstake.com/research/advisories/2003/atstake_etherleak_report.pdf (string)

}

20 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : US Government Resource (string)

]

url : http://www.kb.cert.org/vuls/id/412115 (string)

}

21 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html (string)

}

22 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.osvdb.org/9962 (string)

}

23 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.redhat.com/support/errata/RHSA-2003-025.html (string)

}

24 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.redhat.com/support/errata/RHSA-2003-088.html (string)

}

25 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securityfocus.com/archive/1/305335/30/26420/threaded (string)

}

26 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securityfocus.com/archive/1/307564/30/26270/threaded (string)

}

27 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securitytracker.com/id/1031583 (string)

}

28 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securitytracker.com/id/1040185 (string)

}

29 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2665 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-200 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"affected_release": [{"advisory": "RHSA-2003:088", "cpe": "cpe:/o:redhat:linux:6.2", "product_name": "Red Hat Linux 6.2", "release_date": "2003-03-20T00:00:00Z"}, {"advisory": "RHSA-2003:088", "cpe": "cpe:/o:redhat:linux:7.0", "product_name": "Red Hat Linux 7.0", "release_date": "2003-03-20T00:00:00Z"}, {"advisory": "RHSA-2003:025", "cpe": "cpe:/o:redhat:linux:7.1", "product_name": "Red Hat Linux 7.1", "release_date": "2003-02-04T00:00:00Z"}, {"advisory": "RHSA-2003:190", "cpe": "cpe:/o:redhat:linux:7.1", "product_name": "Red Hat Linux 7.1", "release_date": "2003-06-25T00:00:00Z"}, {"advisory": "RHSA-2003:025", "cpe": "cpe:/o:redhat:linux:7.2", "product_name": "Red Hat Linux 7.2", "release_date": "2003-02-04T00:00:00Z"}, {"advisory": "RHSA-2003:025", "cpe": "cpe:/o:redhat:linux:7.3", "product_name": "Red Hat Linux 7.3", "release_date": "2003-02-04T00:00:00Z"}, {"advisory": "RHSA-2003:025", "cpe": "cpe:/o:redhat:linux:8.0", "product_name": "Red Hat Linux 8.0", "release_date": "2003-02-04T00:00:00Z"}], "bugzilla": {"description": "cisco: information leak in ethernet frames.", "id": "1616933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616933"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.3", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "status": "verified"}, "cwe": "CWE-200", "details": ["Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak."], "name": "CVE-2003-0001", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}], "public_date": "2003-01-06T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2003-0001\nhttps://nvd.nist.gov/vuln/detail/CVE-2003-0001"], "threat_severity": "Important"}

{

affected_release : [ »

0 : { »

advisory : RHSA-2003:088 (string)

cpe : cpe:/o:redhat:linux:6.2 (string)

product_name : Red Hat Linux 6.2 (string)

release_date : 2003-03-20T00:00:00Z (string)

}

1 : { »

advisory : RHSA-2003:088 (string)

cpe : cpe:/o:redhat:linux:7.0 (string)

product_name : Red Hat Linux 7.0 (string)

release_date : 2003-03-20T00:00:00Z (string)

}

2 : { »

advisory : RHSA-2003:025 (string)

cpe : cpe:/o:redhat:linux:7.1 (string)

product_name : Red Hat Linux 7.1 (string)

release_date : 2003-02-04T00:00:00Z (string)

}

3 : { »

advisory : RHSA-2003:190 (string)

cpe : cpe:/o:redhat:linux:7.1 (string)

product_name : Red Hat Linux 7.1 (string)

release_date : 2003-06-25T00:00:00Z (string)

}

4 : { »

advisory : RHSA-2003:025 (string)

cpe : cpe:/o:redhat:linux:7.2 (string)

product_name : Red Hat Linux 7.2 (string)

release_date : 2003-02-04T00:00:00Z (string)

}

5 : { »

advisory : RHSA-2003:025 (string)

cpe : cpe:/o:redhat:linux:7.3 (string)

product_name : Red Hat Linux 7.3 (string)

release_date : 2003-02-04T00:00:00Z (string)

}

6 : { »

advisory : RHSA-2003:025 (string)

cpe : cpe:/o:redhat:linux:8.0 (string)

product_name : Red Hat Linux 8.0 (string)

release_date : 2003-02-04T00:00:00Z (string)

}

]

bugzilla : { »

description : cisco: information leak in ethernet frames. (string)

id : 1616933 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=1616933 (string)

}

csaw : false (boolean)

cvss3 : { »

cvss3_base_score : 5.3 (string)

cvss3_scoring_vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N (string)

status : verified (string)

}

cwe : CWE-200 (string)

details : [ »

0 : Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak. (string)

]

name : CVE-2003-0001 (string)

package_state : [ »

0 : { »

cpe : cpe:/o:redhat:enterprise_linux:6 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 6 (string)

}

1 : { »

cpe : cpe:/o:redhat:enterprise_linux:7 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 7 (string)

}

2 : { »

cpe : cpe:/o:redhat:enterprise_linux:7 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 7 (string)

}

3 : { »

cpe : cpe:/o:redhat:enterprise_linux:8 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 8 (string)

}

4 : { »

cpe : cpe:/o:redhat:enterprise_linux:8 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 8 (string)

}

]

public_date : 2003-01-06T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2003-0001 https://nvd.nist.gov/vuln/detail/CVE-2003-0001 (string)

]

threat_severity : Important (string)

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object