CVE Vulnerabilities

CVE-2003-0709

Published: Oct 20, 2003 | Modified: Apr 03, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

Buffer overflow in the whois client, which is not setuid but is sometimes called from within CGI programs, may allow remote attackers to execute arbitrary code via a long command line option.

Affected Software

Name Vendor Start Version End Version
Whois Whois 4.5.7 (including) 4.5.7 (including)
Whois Whois 4.6.6 (including) 4.6.6 (including)

References