First published: Tue Mar 18 2003(Updated: )
Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
File File | =3.33 | |
File File | =3.28 | |
File File | =3.35 | |
File File | =3.30 | |
File File | =3.36 | |
File File | =3.39 | |
File File | =3.40 | |
File File | =3.32 | |
File File | =3.34 | |
File File | =3.37 | |
NetBSD NetBSD | =1.5.3 | |
NetBSD NetBSD | =1.6 | |
NetBSD NetBSD | =1.5 | |
NetBSD NetBSD | =1.5.1 | |
NetBSD NetBSD | =1.5.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.