Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2003-0853

Published: 17/11/2003 Updated: 10/09/2008
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Gnu

Vulnerability Summary

An integer overflow in ls in the fileutils or coreutils packages may allow local users to cause a denial of service or execute arbitrary code via a large -w value, which could be remotely exploited via applications that use ls, such as wu-ftpd.

Vulnerable Product Search on Vulmon Subscribe to Product

gnu fileutils 4.0

gnu fileutils 4.1

washington university wu-ftpd 2.4.2_beta18_vr10

washington university wu-ftpd 2.4.2_beta18_vr12

washington university wu-ftpd 2.4.2_beta18_vr14

washington university wu-ftpd 2.4.2_beta18_vr7

washington university wu-ftpd 2.4.2_beta18_vr9

washington university wu-ftpd 2.6.2

gnu fileutils 4.1.6

gnu fileutils 4.1.7

washington university wu-ftpd 2.4.1

washington university wu-ftpd 2.4.2_beta18

washington university wu-ftpd 2.4.2_vr16

washington university wu-ftpd 2.4.2_vr17

washington university wu-ftpd 2.5.0

washington university wu-ftpd 2.6.0

washington university wu-ftpd 2.4.2_beta18_vr15

washington university wu-ftpd 2.4.2_beta18_vr4

washington university wu-ftpd 2.4.2_beta18_vr5

washington university wu-ftpd 2.4.2_beta18_vr6

gnu fileutils 4.0.36

washington university wu-ftpd 2.4.2_beta18_vr11

washington university wu-ftpd 2.4.2_beta18_vr13

washington university wu-ftpd 2.4.2_beta18_vr8

washington university wu-ftpd 2.4.2_beta2

washington university wu-ftpd 2.6.1

Exploits

Exploit DB: Coreutils 4.5.x - LS Width Argument Integer Overflow
source: wwwsecurityfocuscom/bid/8875/info Coreutils 'ls' has been reported prone to an integer overflow vulnerability The issue reportedly presents itself when handling width and column display command line arguments It has been reported that excessive values passed as a width argument to 'ls' may cause an internal integer value to be m ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/8875http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012548.htmlhttp://www.guninski.com/binls.htmlhttp://www.redhat.com/support/errata/RHSA-2003-309.htmlhttp://www.redhat.com/support/errata/RHSA-2003-310.htmlhttp://www.securityfocus.com/advisories/6014http://www.turbolinux.com/security/TLSA-2003-60.txthttp://support.avaya.com/elmodocs2/security/ASA-2005-213.pdfhttp://secunia.com/advisories/10126http://secunia.com/advisories/17069http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000768http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000771http://www.mandriva.com/security/advisories?name=MDKSA-2003:106https://nvd.nist.govhttps://www.exploit-db.com/exploits/23274/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook