CVE-2003-0740: CVE-2003-0740

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2003-0740

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Stunnel 4.00, and 3.24 and earlier, leaks a privileged file descriptor returned by listen(), which allows local users to hijack the Stunnel server.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Stunnel泄露文件描述符漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Stunnel是比利时软件开发者Michal Trojnara所研发的一套用于提供全局的TLS/SSL服务的跨平台软件。该软件可对本身无法进行TLS或SSL通信的客户端及服务器提供安全的加密连接。 Stunnel存在文件描述符泄露问题，本地攻击者可以利用这个漏洞劫持Stunnel服务程序，可导致未授权连接加密通信等攻击。问题是由于没有使用CLOEXEC标记的fcntl调用来防止特权文件描述符泄露，通过listen()调用返回的文件描述符可被非特权进程使用。如果Stunnel可被用于通过任何本地程序如te

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2003-0740

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2003-0740

Please Login to view more intelligence information

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000736vendor-advisoryx_refsource_CONECTIVA
http://www.redhat.com/support/errata/RHSA-2003-297.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDKSA-2003:108vendor-advisoryx_refsource_MANDRAKE
https://nvd.nist.gov/vuln/detail/CVE-2003-0740

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2003-0740

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2003-0740

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2003-0740

III. Intelligence Information for CVE-2003-0740

IV. Related Vulnerabilities

V. Comments for CVE-2003-0740

Leave a comment