CVE-2003-0848 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2003-0848
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0848

Description: Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative "pathlen" value to be used.

CVE Status: Candidate

References: TRUSTIX http://www.trustix.org/errata/misc/2004/TSL-2004-0005-slocate.asc.txt SGI SCO SAID Secunia Advisory: SA10670 Secunia Advisory: SA10683 Secunia Advisory: SA10686 Secunia Advisory: SA10698 Secunia Advisory: SA10702 Secunia Advisory: SA10720 Secunia Advisory: SA10722 Secunia Advisory: SA9962 REDHAT http://www.redhat.com/support/errata/RHSA-2004-041.html http://rhn.redhat.com/errata/RHSA-2004-040.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:821 MISC http://www.ebitech.sk/patrik/SA/SA-20031006-A.txt http://www.ebitech.sk/patrik/SA/SA-20031006.txt MANDRAKE http://www.mandriva.com/security/advisories?name=MDKSA-2004:004 FEDORA http://www.redhat.com/archives/fedora-announce-list/2004-January/msg00009.html DEBIAN http://www.debian.org/security/2004/dsa-428 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=106589631819348&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=106546447321274&w=2

Return to the previous page.