CVE-2003-0848
Published Nov 17, 2003
Last updated 7 years ago
Overview
- Description
- Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative "pathlen" value to be used.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:slocate:slocate:2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "279429CA-F200-43BB-A79D-30700B4468FF"
},
{
"criteria": "cpe:2.3:a:slocate:slocate:2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5F837D07-C60B-45EF-A778-5CD3F529CA5C"
},
{
"criteria": "cpe:2.3:a:slocate:slocate:2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0874D827-3048-413A-B804-C7F2DE709C75"
},
{
"criteria": "cpe:2.3:a:slocate:slocate:2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A83BC51E-E90F-4EBD-B6AE-66DEBEB0E903"
},
{
"criteria": "cpe:2.3:a:slocate:slocate:2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D141DDC6-29DF-46AC-8EDB-BBB16BD549EB"
},
{
"criteria": "cpe:2.3:a:slocate:slocate:2.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BC7BA3F6-7AAF-477B-8615-F1E857775A0F"
}
],
"operator": "OR"
}
]
}
]