cbcvebase.
CVE-2003-0165
published 2003-04-02

CVE-2003-0165: Format string vulnerability in Eye Of Gnome (EOG) allows attackers to execute arbitrary code via format string specifiers in a command line argument for the…

PriorityP424medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
1.68%
74.1th percentile
Format string vulnerability in Eye Of Gnome (EOG) allows attackers to execute arbitrary code via format string specifiers in a command line argument for the file to display.

Affected

15 ranges
VendorProductVersion rangeFixed in
debianeog< eog 2.2.1 (bookworm)eog 2.2.1 (bookworm)
gnomeeog
gnomeeog
gnomeeog
gnomeeog
gnomeeog
gnomeeog
gnomeeog
gnomeeog
gnomeeog
gnomeeog
gnomeeog>= 0 < 2.2.12.2.1
gnomeeog>= 0 < 2.2.12.2.1
gnomeeog>= 0 < 2.2.12.2.1
gnomeeog>= 0 < 2.2.12.2.1

CVSS provenance

nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv4.6MEDIUM
vendor_debian4.6MEDIUM
vendor_redhat4.6MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.