CVE Vulnerabilities

CVE-2003-0102

Published: Mar 18, 2003 | Modified: May 03, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).

Affected Software

Name Vendor Start Version End Version
File File 3.28 3.28
File File 3.30 3.30
File File 3.32 3.32
File File 3.33 3.33
File File 3.34 3.34
File File 3.35 3.35
File File 3.36 3.36
File File 3.37 3.37
File File 3.39 3.39
File File 3.40 3.40
File Ubuntu dapper *
File Ubuntu devel *
File Ubuntu edgy *
File Ubuntu feisty *

References