cbcvebase.
CVE-2003-0805
published 2003-10-06

CVE-2003-0805: Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a…

PriorityP433high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
4.84%
90.9th percentile
Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.

Affected

15 ranges
VendorProductVersion rangeFixed in
debiangopher< gopher 3.0.6 (bookworm)gopher 3.0.6 (bookworm)
university_of_minnesotagopher>= 0 < 3.0.63.0.6
university_of_minnesotagopher>= 0 < 3.0.63.0.6
university_of_minnesotagopher>= 0 < 3.0.63.0.6
university_of_minnesotagopher>= 0 < 3.0.63.0.6
university_of_minnesotagopherd
university_of_minnesotagopherd
university_of_minnesotagopherd
university_of_minnesotagopherd
university_of_minnesotagopherd
university_of_minnesotagopherd
university_of_minnesotagopherd
university_of_minnesotagopherd
university_of_minnesotagopherd
university_of_minnesotagopherd

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.