cvelistv5 - cve-2003-0102

CVE-2003-0102 (GCVE-0-2003-0102)

Vulnerability from cvelistv5 – Published: 2004-09-01 04:00 – Updated: 2024-08-08 01:43

Summary

Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.idefense.com/advisory/03.04.03.txt	x_refsource_MISC
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	ftp://ftp.netbsd.org/pub/NetBSD/security/advisori…	vendor-advisoryx_refsource_NETBSD
	http://www.redhat.com/support/errata/RHSA-2003-087.html	vendor-advisoryx_refsource_REDHAT
	http://www.novell.com/linux/security/advisories/2…	vendor-advisoryx_refsource_SUSE
	http://www.securityfocus.com/bid/7008	vdb-entryx_refsource_BID
	http://marc.info/?l=bugtraq&m=104680706201721&w=2	mailing-listx_refsource_BUGTRAQ
	http://lwn.net/Alerts/34908/	vendor-advisoryx_refsource_IMMUNIX
	http://www.redhat.com/support/errata/RHSA-2003-086.html	vendor-advisoryx_refsource_REDHAT
	http://www.debian.org/security/2003/dsa-260	vendor-advisoryx_refsource_DEBIAN
	http://www.kb.cert.org/vuls/id/611865	third-party-advisoryx_refsource_CERT-VN
	http://www.mandrakesoft.com/security/advisories?n…	vendor-advisoryx_refsource_MANDRAKE

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T01:43:35.420Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.idefense.com/advisory/03.04.03.txt"
          },
          {
            "name": "file-afctr-read-bo(11469)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11469"
          },
          {
            "name": "NetBSD-SA2003-003",
            "tags": [
              "vendor-advisory",
              "x_refsource_NETBSD",
              "x_transferred"
            ],
            "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc"
          },
          {
            "name": "RHSA-2003:087",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2003-087.html"
          },
          {
            "name": "SuSE-SA:2003:017",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://www.novell.com/linux/security/advisories/2003_017_file.html"
          },
          {
            "name": "7008",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/7008"
          },
          {
            "name": "20030304 iDEFENSE Security Advisory 03.04.03: Locally Exploitable Buffer Overflow in file(1)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2"
          },
          {
            "name": "IMNX-2003-7+-012-01",
            "tags": [
              "vendor-advisory",
              "x_refsource_IMMUNIX",
              "x_transferred"
            ],
            "url": "http://lwn.net/Alerts/34908/"
          },
          {
            "name": "RHSA-2003:086",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2003-086.html"
          },
          {
            "name": "DSA-260",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2003/dsa-260"
          },
          {
            "name": "VU#611865",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/611865"
          },
          {
            "name": "MDKSA-2003:030",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRAKE",
              "x_transferred"
            ],
            "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2003-03-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2007-11-29T00:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.idefense.com/advisory/03.04.03.txt"
        },
        {
          "name": "file-afctr-read-bo(11469)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11469"
        },
        {
          "name": "NetBSD-SA2003-003",
          "tags": [
            "vendor-advisory",
            "x_refsource_NETBSD"
          ],
          "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc"
        },
        {
          "name": "RHSA-2003:087",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2003-087.html"
        },
        {
          "name": "SuSE-SA:2003:017",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://www.novell.com/linux/security/advisories/2003_017_file.html"
        },
        {
          "name": "7008",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/7008"
        },
        {
          "name": "20030304 iDEFENSE Security Advisory 03.04.03: Locally Exploitable Buffer Overflow in file(1)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2"
        },
        {
          "name": "IMNX-2003-7+-012-01",
          "tags": [
            "vendor-advisory",
            "x_refsource_IMMUNIX"
          ],
          "url": "http://lwn.net/Alerts/34908/"
        },
        {
          "name": "RHSA-2003:086",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2003-086.html"
        },
        {
          "name": "DSA-260",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2003/dsa-260"
        },
        {
          "name": "VU#611865",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/611865"
        },
        {
          "name": "MDKSA-2003:030",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRAKE"
          ],
          "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2003-0102",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.idefense.com/advisory/03.04.03.txt",
              "refsource": "MISC",
              "url": "http://www.idefense.com/advisory/03.04.03.txt"
            },
            {
              "name": "file-afctr-read-bo(11469)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11469"
            },
            {
              "name": "NetBSD-SA2003-003",
              "refsource": "NETBSD",
              "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc"
            },
            {
              "name": "RHSA-2003:087",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2003-087.html"
            },
            {
              "name": "SuSE-SA:2003:017",
              "refsource": "SUSE",
              "url": "http://www.novell.com/linux/security/advisories/2003_017_file.html"
            },
            {
              "name": "7008",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/7008"
            },
            {
              "name": "20030304 iDEFENSE Security Advisory 03.04.03: Locally Exploitable Buffer Overflow in file(1)",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2"
            },
            {
              "name": "IMNX-2003-7+-012-01",
              "refsource": "IMMUNIX",
              "url": "http://lwn.net/Alerts/34908/"
            },
            {
              "name": "RHSA-2003:086",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2003-086.html"
            },
            {
              "name": "DSA-260",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2003/dsa-260"
            },
            {
              "name": "VU#611865",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/611865"
            },
            {
              "name": "MDKSA-2003:030",
              "refsource": "MANDRAKE",
              "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2003-0102",
    "datePublished": "2004-09-01T04:00:00",
    "dateReserved": "2003-02-25T00:00:00",
    "dateUpdated": "2024-08-08T01:43:35.420Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.28:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"345D0583-A534-47DA-917C-82E18A71D661\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"40484250-D324-4068-AD46-14F3663E89B1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.32:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"32774741-CD88-4401-AC2C-BB46F1CCD100\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.33:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1AE7D6A6-0A24-484A-9D57-1FD7792D8D8C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"358179A6-57E9-4F26-B4CE-733D34922649\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D25DEC28-4531-44A6-B6C5-3B79CEA8D0B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.36:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A079E68-BB58-4FFC-AADE-1BA4B3F1C2BA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.37:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7B379D5-30E1-4C54-8D5E-FF6E35C531FE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.39:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"20A676AE-1534-42EF-8885-3C654A0EEC35\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:file:file:3.40:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2CE83984-EBE3-4C6D-8F9F-83D4D076270C\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E10D9BF9-FCC7-4680-AD3A-95757FC005EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"78E8C3A4-9FA7-4F2A-8C65-D4404715E674\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7AC78BA4-70F4-4B9F-93C2-B107E4DCC418\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"28A10F5A-067E-4DD8-B585-ABCD6F6B324E\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).\"}]",
      "id": "CVE-2003-0102",
      "lastModified": "2024-11-20T23:43:57.610",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 4.6, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.9, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": true, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2003-03-18T05:00:00.000",
      "references": "[{\"url\": \"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lwn.net/Alerts/34908/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2003/dsa-260\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.idefense.com/advisory/03.04.03.txt\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/611865\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.novell.com/linux/security/advisories/2003_017_file.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2003-086.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2003-087.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/7008\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/11469\", \"source\": \"cve@mitre.org\"}, {\"url\": \"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lwn.net/Alerts/34908/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2003/dsa-260\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.idefense.com/advisory/03.04.03.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/611865\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.novell.com/linux/security/advisories/2003_017_file.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2003-086.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2003-087.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/7008\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/11469\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2003-0102\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2003-03-18T05:00:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":4.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":true,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"345D0583-A534-47DA-917C-82E18A71D661\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40484250-D324-4068-AD46-14F3663E89B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32774741-CD88-4401-AC2C-BB46F1CCD100\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AE7D6A6-0A24-484A-9D57-1FD7792D8D8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"358179A6-57E9-4F26-B4CE-733D34922649\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D25DEC28-4531-44A6-B6C5-3B79CEA8D0B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A079E68-BB58-4FFC-AADE-1BA4B3F1C2BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7B379D5-30E1-4C54-8D5E-FF6E35C531FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20A676AE-1534-42EF-8885-3C654A0EEC35\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:file:file:3.40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CE83984-EBE3-4C6D-8F9F-83D4D076270C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E10D9BF9-FCC7-4680-AD3A-95757FC005EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78E8C3A4-9FA7-4F2A-8C65-D4404715E674\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7AC78BA4-70F4-4B9F-93C2-B107E4DCC418\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28A10F5A-067E-4DD8-B585-ABCD6F6B324E\"}]}]}],\"references\":[{\"url\":\"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lwn.net/Alerts/34908/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2003/dsa-260\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.idefense.com/advisory/03.04.03.txt\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/611865\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2003_017_file.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2003-086.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2003-087.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/7008\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/11469\",\"source\":\"cve@mitre.org\"},{\"url\":\"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lwn.net/Alerts/34908/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2003/dsa-260\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.idefense.com/advisory/03.04.03.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/611865\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2003_017_file.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2003-086.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2003-087.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/7008\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/11469\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-8HJ3-WVPV-XRPR

Vulnerability from github – Published: 2022-05-03 03:09 – Updated: 2022-05-03 03:09

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2003-0102"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2003-03-18T05:00:00Z",
    "severity": "MODERATE"
  },
  "details": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).",
  "id": "GHSA-8hj3-wvpv-xrpr",
  "modified": "2022-05-03T03:09:39Z",
  "published": "2022-05-03T03:09:39Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11469"
    },
    {
      "type": "WEB",
      "url": "http://lwn.net/Alerts/34908"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2003/dsa-260"
    },
    {
      "type": "WEB",
      "url": "http://www.idefense.com/advisory/03.04.03.txt"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/611865"
    },
    {
      "type": "WEB",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2003_017_file.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-086.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-087.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/7008"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

RHSA-2003_087

Vulnerability from csaf_redhat - Published: 2003-03-10 12:36 - Updated: 2024-11-21 22:42

Summary

Red Hat Security Advisory: file security update

Notes

Topic

Updated file packages are available to close a buffer overflow vulnerability. [Updated 12 March 2003] Added packages for Red Hat Enterprise Linux ES and Red Hat Enterprise Linux WS

Details

The file command is used to identify a particular file according to the type of data contained by the file. The file utility before version 3.41 contains a buffer overflow vulnerability in the ELF parsing routines. This vulnerability may allow an attacker to create a carefully crafted binary which can cause arbitrary code to run if a victim runs the file command against that binary. On some distributions it may also be possible to trigger this file command vulnerability by encouraging the victim to use the less command on an exploited file name so that it will be processed by the lesspipe.sh script. All users are advised to update to these erratum packages which contain a backported patch to correct this vulnerability. Red Hat would like to thank iDefense for disclosing this issue and zen-parse for discussion of some of the implications.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated file packages are available to close a buffer overflow vulnerability.\n\n[Updated 12 March 2003]\nAdded packages for Red Hat Enterprise Linux ES and Red Hat Enterprise\nLinux WS",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The file command is used to identify a particular file according to\nthe type of data contained by the file.\n\nThe file utility before version 3.41 contains a buffer overflow\nvulnerability in the ELF parsing routines. This vulnerability may\nallow an attacker to create a carefully crafted binary which can cause\narbitrary code to run if a victim runs the file command against that\nbinary.\n\nOn some distributions it may also be possible to trigger this file command\nvulnerability by encouraging the victim to use the\nless command on an exploited file name so that it will be processed by the\nlesspipe.sh script.\n\nAll users are advised to update to these erratum packages which\ncontain a backported patch to correct this vulnerability.\n\nRed Hat would like to thank iDefense for disclosing this issue and\nzen-parse for discussion of some of the implications.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2003:087",
        "url": "https://access.redhat.com/errata/RHSA-2003:087"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "http://www.idefense.com/advisory/03.04.03.txt",
        "url": "http://www.idefense.com/advisory/03.04.03.txt"
      },
      {
        "category": "external",
        "summary": "85635",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=85635"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2003_087.json"
      }
    ],
    "title": "Red Hat Security Advisory: file security update",
    "tracking": {
      "current_release_date": "2024-11-21T22:42:06+00:00",
      "generator": {
        "date": "2024-11-21T22:42:06+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2003:087",
      "initial_release_date": "2003-03-10T12:36:00+00:00",
      "revision_history": [
        {
          "date": "2003-03-10T12:36:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-03-05T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T22:42:06+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                "product": {
                  "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_id": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux Advanced Workstation 2.1",
                "product": {
                  "name": "Red Hat Linux Advanced Workstation 2.1",
                  "product_id": "Red Hat Linux Advanced Workstation 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::aw"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 2.1",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 2.1",
                  "product_id": "Red Hat Enterprise Linux ES version 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 2.1",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 2.1",
                  "product_id": "Red Hat Enterprise Linux WS version 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2003-0102",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616966"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
          "Red Hat Enterprise Linux ES version 2.1",
          "Red Hat Enterprise Linux WS version 2.1",
          "Red Hat Linux Advanced Workstation 2.1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-0102"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616966",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616966"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-0102",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-0102"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102"
        }
      ],
      "release_date": "2003-03-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-10T12:36:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
            "Red Hat Enterprise Linux ES version 2.1",
            "Red Hat Enterprise Linux WS version 2.1",
            "Red Hat Linux Advanced Workstation 2.1"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:087"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2003:086

Vulnerability from csaf_redhat - Published: 2003-03-07 15:00 - Updated: 2025-11-21 17:25

Summary

Red Hat Security Advisory: : : : Updated file packages fix vulnerability

Notes

Topic

Updated file packages are available to close a buffer overflow vulnerability. [Updated 16 April 2003] Added packages for Red Hat Linux on IBM iSeries and pSeries systems.

Details

The file command is used to identify a particular file according to the type of data contained in the file. The file utility before version 3.41 contains a buffer overflow vulnerability in the ELF parsing routines. This vulnerability may allow an attacker to create a carefully crafted binary which can allow arbitrary code to be run if a victim runs the 'file' command on that binary. There are other ways that an attacker may be able to take advantage of this vulnerability in the file command: -- In Red Hat Linux 6.2 and 7.0, the rhs-printfilter package makes use of the file command. This would allow an attacker who has the ability to print to execute arbitrary commands (as the user 'lp') on the print server by sending a malicious file. -- On some Red Hat Linux distributions it may also be possible to trigger this exploit by encouraging the victim to use the 'less' command on a malicious file which is named so that it will be processed by the 'lesspipe.sh' script. All users are advised to update to these erratum packages, which contain a backported patch to correct this vulnerability. Red Hat would like to thank iDefense for disclosing this issue and zen-parse for discussion of some of the implications.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated file packages are available to close a buffer overflow vulnerability.\n\n[Updated 16 April 2003]\nAdded packages for Red Hat Linux on IBM iSeries and pSeries systems.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The file command is used to identify a particular file according to the\ntype of data contained in the file.\n\nThe file utility before version 3.41 contains a buffer overflow\nvulnerability in the ELF parsing routines. This vulnerability may\nallow an attacker to create a carefully crafted binary which can allow\narbitrary code to be run if a victim runs the \u0027file\u0027 command on that\nbinary.\n\nThere are other ways that an attacker may be able to take advantage of\nthis vulnerability in the file command:\n\n-- In Red Hat Linux 6.2 and 7.0, the rhs-printfilter package makes use\nof the file command. This would allow an attacker who has the ability\nto print to execute arbitrary commands (as the user \u0027lp\u0027) on the print\nserver by sending a malicious file.\n\n-- On some Red Hat Linux distributions it may also be possible to\ntrigger this exploit by encouraging the victim to use the \u0027less\u0027\ncommand on a malicious file which is named so that it will be\nprocessed by the \u0027lesspipe.sh\u0027 script.\n\nAll users are advised to update to these erratum packages, which contain a\nbackported patch to correct this vulnerability.  \n\nRed Hat would like to thank iDefense for disclosing this issue and\nzen-parse for discussion of some of the implications.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2003:086",
        "url": "https://access.redhat.com/errata/RHSA-2003:086"
      },
      {
        "category": "external",
        "summary": "http://www.idefense.com/advisory/03.04.03.txt",
        "url": "http://www.idefense.com/advisory/03.04.03.txt"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2003_086.json"
      }
    ],
    "title": "Red Hat Security Advisory: : : : Updated file packages fix vulnerability",
    "tracking": {
      "current_release_date": "2025-11-21T17:25:44+00:00",
      "generator": {
        "date": "2025-11-21T17:25:44+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2003:086",
      "initial_release_date": "2003-03-07T15:00:00+00:00",
      "revision_history": [
        {
          "date": "2003-03-07T15:00:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-03-05T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:25:44+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Linux 6.2",
                "product": {
                  "name": "Red Hat Linux 6.2",
                  "product_id": "Red Hat Linux 6.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:6.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.0",
                "product": {
                  "name": "Red Hat Linux 7.0",
                  "product_id": "Red Hat Linux 7.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.1",
                "product": {
                  "name": "Red Hat Linux 7.1",
                  "product_id": "Red Hat Linux 7.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.2",
                "product": {
                  "name": "Red Hat Linux 7.2",
                  "product_id": "Red Hat Linux 7.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.3",
                "product": {
                  "name": "Red Hat Linux 7.3",
                  "product_id": "Red Hat Linux 7.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 8.0",
                "product": {
                  "name": "Red Hat Linux 8.0",
                  "product_id": "Red Hat Linux 8.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:8.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2003-0102",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616966"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Linux 6.2",
          "Red Hat Linux 7.0",
          "Red Hat Linux 7.1",
          "Red Hat Linux 7.2",
          "Red Hat Linux 7.3",
          "Red Hat Linux 8.0"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-0102"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616966",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616966"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-0102",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-0102"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102"
        }
      ],
      "release_date": "2003-03-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-07T15:00:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Linux 6.2",
            "Red Hat Linux 7.0",
            "Red Hat Linux 7.1",
            "Red Hat Linux 7.2",
            "Red Hat Linux 7.3",
            "Red Hat Linux 8.0"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:086"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2003_086

Vulnerability from csaf_redhat - Published: 2003-03-07 15:00 - Updated: 2024-11-21 22:42

Summary

Red Hat Security Advisory: : : : Updated file packages fix vulnerability

Notes

Topic

Updated file packages are available to close a buffer overflow vulnerability. [Updated 16 April 2003] Added packages for Red Hat Linux on IBM iSeries and pSeries systems.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated file packages are available to close a buffer overflow vulnerability.\n\n[Updated 16 April 2003]\nAdded packages for Red Hat Linux on IBM iSeries and pSeries systems.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The file command is used to identify a particular file according to the\ntype of data contained in the file.\n\nThe file utility before version 3.41 contains a buffer overflow\nvulnerability in the ELF parsing routines. This vulnerability may\nallow an attacker to create a carefully crafted binary which can allow\narbitrary code to be run if a victim runs the \u0027file\u0027 command on that\nbinary.\n\nThere are other ways that an attacker may be able to take advantage of\nthis vulnerability in the file command:\n\n-- In Red Hat Linux 6.2 and 7.0, the rhs-printfilter package makes use\nof the file command. This would allow an attacker who has the ability\nto print to execute arbitrary commands (as the user \u0027lp\u0027) on the print\nserver by sending a malicious file.\n\n-- On some Red Hat Linux distributions it may also be possible to\ntrigger this exploit by encouraging the victim to use the \u0027less\u0027\ncommand on a malicious file which is named so that it will be\nprocessed by the \u0027lesspipe.sh\u0027 script.\n\nAll users are advised to update to these erratum packages, which contain a\nbackported patch to correct this vulnerability.  \n\nRed Hat would like to thank iDefense for disclosing this issue and\nzen-parse for discussion of some of the implications.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2003:086",
        "url": "https://access.redhat.com/errata/RHSA-2003:086"
      },
      {
        "category": "external",
        "summary": "http://www.idefense.com/advisory/03.04.03.txt",
        "url": "http://www.idefense.com/advisory/03.04.03.txt"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2003_086.json"
      }
    ],
    "title": "Red Hat Security Advisory: : : : Updated file packages fix vulnerability",
    "tracking": {
      "current_release_date": "2024-11-21T22:42:03+00:00",
      "generator": {
        "date": "2024-11-21T22:42:03+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2003:086",
      "initial_release_date": "2003-03-07T15:00:00+00:00",
      "revision_history": [
        {
          "date": "2003-03-07T15:00:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-03-05T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T22:42:03+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Linux 6.2",
                "product": {
                  "name": "Red Hat Linux 6.2",
                  "product_id": "Red Hat Linux 6.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:6.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.0",
                "product": {
                  "name": "Red Hat Linux 7.0",
                  "product_id": "Red Hat Linux 7.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.1",
                "product": {
                  "name": "Red Hat Linux 7.1",
                  "product_id": "Red Hat Linux 7.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.2",
                "product": {
                  "name": "Red Hat Linux 7.2",
                  "product_id": "Red Hat Linux 7.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.3",
                "product": {
                  "name": "Red Hat Linux 7.3",
                  "product_id": "Red Hat Linux 7.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 8.0",
                "product": {
                  "name": "Red Hat Linux 8.0",
                  "product_id": "Red Hat Linux 8.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:8.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2003-0102",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616966"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Linux 6.2",
          "Red Hat Linux 7.0",
          "Red Hat Linux 7.1",
          "Red Hat Linux 7.2",
          "Red Hat Linux 7.3",
          "Red Hat Linux 8.0"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-0102"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616966",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616966"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-0102",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-0102"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102"
        }
      ],
      "release_date": "2003-03-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-07T15:00:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Linux 6.2",
            "Red Hat Linux 7.0",
            "Red Hat Linux 7.1",
            "Red Hat Linux 7.2",
            "Red Hat Linux 7.3",
            "Red Hat Linux 8.0"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:086"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2003:087

Vulnerability from csaf_redhat - Published: 2003-03-10 12:36 - Updated: 2025-11-21 17:25

Summary

Red Hat Security Advisory: file security update

Notes

Topic

Updated file packages are available to close a buffer overflow vulnerability. [Updated 12 March 2003] Added packages for Red Hat Enterprise Linux ES and Red Hat Enterprise Linux WS

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated file packages are available to close a buffer overflow vulnerability.\n\n[Updated 12 March 2003]\nAdded packages for Red Hat Enterprise Linux ES and Red Hat Enterprise\nLinux WS",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The file command is used to identify a particular file according to\nthe type of data contained by the file.\n\nThe file utility before version 3.41 contains a buffer overflow\nvulnerability in the ELF parsing routines. This vulnerability may\nallow an attacker to create a carefully crafted binary which can cause\narbitrary code to run if a victim runs the file command against that\nbinary.\n\nOn some distributions it may also be possible to trigger this file command\nvulnerability by encouraging the victim to use the\nless command on an exploited file name so that it will be processed by the\nlesspipe.sh script.\n\nAll users are advised to update to these erratum packages which\ncontain a backported patch to correct this vulnerability.\n\nRed Hat would like to thank iDefense for disclosing this issue and\nzen-parse for discussion of some of the implications.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2003:087",
        "url": "https://access.redhat.com/errata/RHSA-2003:087"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "http://www.idefense.com/advisory/03.04.03.txt",
        "url": "http://www.idefense.com/advisory/03.04.03.txt"
      },
      {
        "category": "external",
        "summary": "85635",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=85635"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2003_087.json"
      }
    ],
    "title": "Red Hat Security Advisory: file security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:25:45+00:00",
      "generator": {
        "date": "2025-11-21T17:25:45+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2003:087",
      "initial_release_date": "2003-03-10T12:36:00+00:00",
      "revision_history": [
        {
          "date": "2003-03-10T12:36:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-03-05T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:25:45+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                "product": {
                  "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_id": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux Advanced Workstation 2.1",
                "product": {
                  "name": "Red Hat Linux Advanced Workstation 2.1",
                  "product_id": "Red Hat Linux Advanced Workstation 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::aw"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 2.1",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 2.1",
                  "product_id": "Red Hat Enterprise Linux ES version 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 2.1",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 2.1",
                  "product_id": "Red Hat Enterprise Linux WS version 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2003-0102",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616966"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
          "Red Hat Enterprise Linux ES version 2.1",
          "Red Hat Enterprise Linux WS version 2.1",
          "Red Hat Linux Advanced Workstation 2.1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-0102"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616966",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616966"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-0102",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-0102"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0102"
        }
      ],
      "release_date": "2003-03-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-10T12:36:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
            "Red Hat Enterprise Linux ES version 2.1",
            "Red Hat Enterprise Linux WS version 2.1",
            "Red Hat Linux Advanced Workstation 2.1"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:087"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "security flaw"
    }
  ]
}

GSD-2003-0102

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2003-0102

Aliases

CVE-2003-0102

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2003-0102",
    "description": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).",
    "id": "GSD-2003-0102",
    "references": [
      "https://www.debian.org/security/2003/dsa-260",
      "https://access.redhat.com/errata/RHSA-2003:087",
      "https://access.redhat.com/errata/RHSA-2003:086"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2003-0102"
      ],
      "details": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).",
      "id": "GSD-2003-0102",
      "modified": "2023-12-13T01:22:13.316432Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2003-0102",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize)."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.idefense.com/advisory/03.04.03.txt",
            "refsource": "MISC",
            "url": "http://www.idefense.com/advisory/03.04.03.txt"
          },
          {
            "name": "file-afctr-read-bo(11469)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11469"
          },
          {
            "name": "NetBSD-SA2003-003",
            "refsource": "NETBSD",
            "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc"
          },
          {
            "name": "RHSA-2003:087",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2003-087.html"
          },
          {
            "name": "SuSE-SA:2003:017",
            "refsource": "SUSE",
            "url": "http://www.novell.com/linux/security/advisories/2003_017_file.html"
          },
          {
            "name": "7008",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/7008"
          },
          {
            "name": "20030304 iDEFENSE Security Advisory 03.04.03: Locally Exploitable Buffer Overflow in file(1)",
            "refsource": "BUGTRAQ",
            "url": "http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2"
          },
          {
            "name": "IMNX-2003-7+-012-01",
            "refsource": "IMMUNIX",
            "url": "http://lwn.net/Alerts/34908/"
          },
          {
            "name": "RHSA-2003:086",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2003-086.html"
          },
          {
            "name": "DSA-260",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2003/dsa-260"
          },
          {
            "name": "VU#611865",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/611865"
          },
          {
            "name": "MDKSA-2003:030",
            "refsource": "MANDRAKE",
            "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.30:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.32:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.28:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.37:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.39:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.40:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.33:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.34:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.35:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:file:file:3.36:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2003-0102"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.idefense.com/advisory/03.04.03.txt",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.idefense.com/advisory/03.04.03.txt"
            },
            {
              "name": "7008",
              "refsource": "BID",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.securityfocus.com/bid/7008"
            },
            {
              "name": "DSA-260",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2003/dsa-260"
            },
            {
              "name": "IMNX-2003-7+-012-01",
              "refsource": "IMMUNIX",
              "tags": [],
              "url": "http://lwn.net/Alerts/34908/"
            },
            {
              "name": "MDKSA-2003:030",
              "refsource": "MANDRAKE",
              "tags": [],
              "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030"
            },
            {
              "name": "NetBSD-SA2003-003",
              "refsource": "NETBSD",
              "tags": [],
              "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc"
            },
            {
              "name": "SuSE-SA:2003:017",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://www.novell.com/linux/security/advisories/2003_017_file.html"
            },
            {
              "name": "RHSA-2003:086",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-086.html"
            },
            {
              "name": "RHSA-2003:087",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-087.html"
            },
            {
              "name": "VU#611865",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/611865"
            },
            {
              "name": "20030304 iDEFENSE Security Advisory 03.04.03: Locally Exploitable Buffer Overflow in file(1)",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2"
            },
            {
              "name": "file-afctr-read-bo(11469)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11469"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": true,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-05-03T01:29Z",
      "publishedDate": "2003-03-18T05:00Z"
    }
  }
}

FKIE_CVE-2003-0102

Vulnerability from fkie_nvd - Published: 2003-03-18 05:00 - Updated: 2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
cve@mitre.org	ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc
cve@mitre.org	http://lwn.net/Alerts/34908/
cve@mitre.org	http://marc.info/?l=bugtraq&m=104680706201721&w=2
cve@mitre.org	http://www.debian.org/security/2003/dsa-260
cve@mitre.org	http://www.idefense.com/advisory/03.04.03.txt	Exploit, Patch, Vendor Advisory
cve@mitre.org	http://www.kb.cert.org/vuls/id/611865	US Government Resource
cve@mitre.org	http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030
cve@mitre.org	http://www.novell.com/linux/security/advisories/2003_017_file.html
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2003-086.html
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2003-087.html
cve@mitre.org	http://www.securityfocus.com/bid/7008	Patch, Vendor Advisory
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/11469
af854a3a-2127-422b-91ae-364da2661108	ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc
af854a3a-2127-422b-91ae-364da2661108	http://lwn.net/Alerts/34908/
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=104680706201721&w=2
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2003/dsa-260
af854a3a-2127-422b-91ae-364da2661108	http://www.idefense.com/advisory/03.04.03.txt	Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/611865	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2003_017_file.html
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2003-086.html
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2003-087.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/7008	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/11469

Impacted products

Vendor	Product	Version
file	file	3.28
file	file	3.30
file	file	3.32
file	file	3.33
file	file	3.34
file	file	3.35
file	file	3.36
file	file	3.37
file	file	3.39
file	file	3.40
netbsd	netbsd	1.5
netbsd	netbsd	1.5.1
netbsd	netbsd	1.5.2
netbsd	netbsd	1.5.3
netbsd	netbsd	1.6

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:file:file:3.28:*:*:*:*:*:*:*",
              "matchCriteriaId": "345D0583-A534-47DA-917C-82E18A71D661",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "40484250-D324-4068-AD46-14F3663E89B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.32:*:*:*:*:*:*:*",
              "matchCriteriaId": "32774741-CD88-4401-AC2C-BB46F1CCD100",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.33:*:*:*:*:*:*:*",
              "matchCriteriaId": "1AE7D6A6-0A24-484A-9D57-1FD7792D8D8C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.34:*:*:*:*:*:*:*",
              "matchCriteriaId": "358179A6-57E9-4F26-B4CE-733D34922649",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.35:*:*:*:*:*:*:*",
              "matchCriteriaId": "D25DEC28-4531-44A6-B6C5-3B79CEA8D0B0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.36:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A079E68-BB58-4FFC-AADE-1BA4B3F1C2BA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.37:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7B379D5-30E1-4C54-8D5E-FF6E35C531FE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.39:*:*:*:*:*:*:*",
              "matchCriteriaId": "20A676AE-1534-42EF-8885-3C654A0EEC35",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:file:file:3.40:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CE83984-EBE3-4C6D-8F9F-83D4D076270C",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "E10D9BF9-FCC7-4680-AD3A-95757FC005EA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "78E8C3A4-9FA7-4F2A-8C65-D4404715E674",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "7AC78BA4-70F4-4B9F-93C2-B107E4DCC418",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "28A10F5A-067E-4DD8-B585-ABCD6F6B324E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize)."
    }
  ],
  "id": "CVE-2003-0102",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2003-03-18T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lwn.net/Alerts/34908/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2003/dsa-260"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.idefense.com/advisory/03.04.03.txt"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/611865"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.novell.com/linux/security/advisories/2003_017_file.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-086.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-087.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/7008"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11469"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-003.txt.asc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lwn.net/Alerts/34908/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=104680706201721\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2003/dsa-260"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.idefense.com/advisory/03.04.03.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/611865"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:030"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2003_017_file.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-086.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-087.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/7008"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11469"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2003-0102 (GCVE-0-2003-0102)

GHSA-8HJ3-WVPV-XRPR

RHSA-2003_087

RHSA-2003:086

RHSA-2003_086

RHSA-2003:087

GSD-2003-0102

FKIE_CVE-2003-0102

Tags

Sightings

Nomenclature