Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-drdb-hwnm-j3ch

Summary Buffer overflow in the lprm command in the lprold lpr package on SuSE 7.1 through 7.3, OpenBSD 3.2 and earlier, and possibly other operating systems, allows local users to gain root privileges via long command line arguments such as (1) request ID or (2) user name.

Aliases

alias	CVE-2003-0144

Fixed_packages

url	pkg:deb/debian/lpr@1:2000.05.07-4.20?distro=trixie
purl	pkg:deb/debian/lpr@1:2000.05.07-4.20?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2000.05.07-4.20%3Fdistro=trixie

url	pkg:deb/debian/lpr@1:2003.09.23-7
purl	pkg:deb/debian/lpr@1:2003.09.23-7
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2003.09.23-7

url	pkg:deb/debian/lpr@1:2008.05.17.3?distro=trixie
purl	pkg:deb/debian/lpr@1:2008.05.17.3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%3Fdistro=trixie

url	pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu1?distro=trixie
purl	pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu1%3Fdistro=trixie

url	pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu3.1?distro=trixie
purl	pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu3.1%3Fdistro=trixie

url	pkg:deb/debian/lpr@1:2008.05.17.4?distro=trixie
purl	pkg:deb/debian/lpr@1:2008.05.17.4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.4%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/lpr@5.9-29hamm34

purl pkg:deb/debian/lpr@5.9-29hamm34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6379-1fut-nbhm

vulnerability	VCID-6g2v-1tqy-jkap

vulnerability	VCID-drdb-hwnm-j3ch

vulnerability	VCID-pyrx-9fms-5fft

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@5.9-29hamm34

url pkg:deb/debian/lpr@1:0.48-0.slink2

purl pkg:deb/debian/lpr@1:0.48-0.slink2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6379-1fut-nbhm

vulnerability	VCID-6g2v-1tqy-jkap

vulnerability	VCID-drdb-hwnm-j3ch

vulnerability	VCID-pyrx-9fms-5fft

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:0.48-0.slink2

url pkg:deb/debian/lpr@1:2000.05.07-4.3

purl pkg:deb/debian/lpr@1:2000.05.07-4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6379-1fut-nbhm

vulnerability	VCID-drdb-hwnm-j3ch

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2000.05.07-4.3

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2003-0144

reference_id

reference_type

scores

value	0.0025
scoring_system	epss
scoring_elements	0.48177
published_at	2026-04-01T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48214
published_at	2026-04-02T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48234
published_at	2026-04-12T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48186
published_at	2026-04-07T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48241
published_at	2026-04-08T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48236
published_at	2026-04-09T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.4826
published_at	2026-04-11T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48245
published_at	2026-04-13T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48297
published_at	2026-04-16T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48292
published_at	2026-04-18T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48247
published_at	2026-04-21T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48232
published_at	2026-04-24T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48244
published_at	2026-04-26T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48191
published_at	2026-04-29T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48105
published_at	2026-05-05T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48169
published_at	2026-05-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2003-0144

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0144
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0144

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22331.c
reference_id	CVE-2003-0144;OSVDB-7549
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22331.c

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22332.c
reference_id	CVE-2003-0144;OSVDB-7549
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22332.c

reference_url	https://www.securityfocus.com/bid/7025/info
reference_id	CVE-2003-0144;OSVDB-7549
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/7025/info

Weaknesses

Exploits

date_added	1998-04-22
description	BSD 'lpr' 2000.05.07/0.48/0.72 / lpr-ppd 0.72 - Local Buffer Overflow (2)
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`true`
source_date_published	1998-04-22
exploit_type	local
platform	unix
source_date_updated	2012-10-30
data_source	Exploit-DB
source_url	https://www.securityfocus.com/bid/7025/info

Severity_range_score null

Exploitability 2.0

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-drdb-hwnm-j3ch

Vulnerability Instance