|
|
CVE Reference: CVE-2003-0102 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2003-0102 |
|
|
Description: Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize). |
|
|
CVE Status: Entry |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/11469 SUSE http://www.novell.com/linux/security/advisories/2003_017_file.html REDHAT http://www.redhat.com/support/errata/RHSA-2003-086.html http://www.redhat.com/support/errata/RHSA-2003-087.html NETBSD MISC http://www.idefense.com/advisory/03.04.03.txt MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030 IMMUNIX http://lwn.net/Alerts/34908/ DEBIAN http://www.debian.org/security/2003/dsa-260 CERT-VN 611865 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=104680706201721&w=2 BID 7008 |
|
| Return to the previous page. |
