CVE-2003-1023 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2003-1023
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-1023

Description: Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/13247 SGI SAID Secunia Advisory: SA10645 Secunia Advisory: SA10685 Secunia Advisory: SA10716 Secunia Advisory: SA10772 Secunia Advisory: SA10823 Secunia Advisory: SA11219 Secunia Advisory: SA11262 Secunia Advisory: SA11268 Secunia Advisory: SA9833 Secunia Advisory: SA11296 REDHAT http://rhn.redhat.com/errata/RHSA-2004-034.html http://rhn.redhat.com/errata/RHSA-2004-035.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:822 MANDRAKE http://www.mandriva.com/security/advisories?name=MDKSA-2004:007 GENTOO http://security.gentoo.org/glsa/glsa-200403-09.xml FEDORA http://www.redhat.com/archives/fedora-legacy-announce/2004-May/msg00002.html http://fedoranews.org/updates/FEDORA-2004-058.shtml DEBIAN http://www.debian.org/security/2004/dsa-424 CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000833 CALDERA BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=108118433222764&w=2 http://archive.cert.uni-stuttgart.de/bugtraq/2003/09/msg00309.html BID 8658

Return to the previous page.