Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0390

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2003-0390
Last Modified 07 Mar 2011 09:12:33
Published 02 Jul 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0390

Summary

Multiple buffer overflows in Options Parsing Tool (OPT) shared library 3.18 and earlier, when used in setuid programs, may allow local users to execute arbitrary code via long command line options that are fed into macros such as opt_warn_2, as used in functions such as opt_atoi.

Vulnerable Systems

Application

  • James Theiler Opt 3.18


References

CONFIRM - http://nis-www.lanl.gov/~jt/Software/opt/opt-3.19.tar.gz

BUGTRAQ - 20030523 Re: Options Parsing Tool library buffer overflows.

BUGTRAQ - 20030424 SRT2003-04-24-1532 - Options Parsing Tool library buffer overflows.


Last Updated: 27 May 2016 10:37:53