CVE-2003-0056

Buffer overflow in secure locate (slocate) before 2.7 allows local users to execute arbitrary code via a long (1) -c or (2) -r command line argument.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 21

NVD 2 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Slocate ≫ Slocate Version2.5

Slocate ≫ Slocate Version2.6

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.09%	0.61

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

Es wurden noch keine Informationen zu CWE veröffentlicht.

ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-009.0.txt

ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc

http://marc.info/?l=bugtraq&m=104342864418213&w=2

http://marc.info/?l=bugtraq&m=104348607205691&w=2

http://marc.info/?l=bugtraq&m=104428624705363&w=2

http://rhn.redhat.com/errata/RHSA-2004-041.html

http://secunia.com/advisories/10720

http://secunia.com/advisories/7947

http://secunia.com/advisories/7982

http://secunia.com/advisories/8007

http://secunia.com/advisories/8118/

http://secunia.com/advisories/8236

http://secunia.com/advisories/8749

http://www.debian.org/security/2003/dsa-252

Patch

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDKSA-2003:015

http://www.net-security.org/advisory.php?id=2010

http://www.usg.org.uk/advisories/2003.001.txt

Vendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11369

CVE Source (NVD)

CVE Source (JSON)

EUVD

Team-orientierte Vulnerability Management Plattform