CVE-2003-1023
published 2004-01-20CVE-2003-1023: Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows…
PriorityP333high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
5.14%
91.4th percentile
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | mc | < mc 1:4.6.0-4.6.1-pre1-1 (bookworm) | mc 1:4.6.0-4.6.1-pre1-1 (bookworm) |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5f9c-w9rv-7v96: Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry
ghsa_unreviewed·2022-05-03
CVE-2003-1023 [HIGH] GHSA-5f9c-w9rv-7v96: Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion.
OSV
CVE-2003-1023: Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry
osv·2004-01-20·CVSS 7.5
CVE-2003-1023 [HIGH] CVE-2003-1023: Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion.
Red Hat
security flaw
vendor_redhat·2004-01-16·CVSS 7.5
CVE-2003-1023 [HIGH] security flaw
security flaw
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion.
Debian
CVE-2003-1023: mc - Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midni...
vendor_debian·2003·CVSS 7.5
CVE-2003-1023 [HIGH] CVE-2003-1023: mc - Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midni...
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion.
Scope: local
bookworm: resolved (fixed in 1:4.6.0-4.6.1-pre1-1)
bullseye: resolved (fixed in 1:4.6.0-4.6.1-pre1-1)
forky: resolved (fixed in 1:4.6.0-4.6.1-pre1-1)
sid: resolved (fixed in 1:4.6.0-4.6.1-pre1-1)
trixie: resolved (fixed in 1:4.6.0-4.6.1-pre1-1)
Suricata
GPL RPC mountd UDP mount path overflow attempt
suricata·2010-09-23
CVE-2003-0252 GPL RPC mountd UDP mount path overflow attempt
GPL RPC mountd UDP mount path overflow attempt
Rule: alert udp $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL RPC mountd UDP mount path overflow attempt"; content:"|00 01 86 A5 00|"; depth:5; offset:12; content:"|00 00 00 01|"; within:4; distance:3; byte_jump:4,4,relative,align; byte_jump:4,4,relative,align; byte_test:4,>,1023,0,relative; content:"|00 00 00 00|"; depth:4; offset:4; reference:bugtraq,8179; reference:cve,2003-0252; reference:nessus,11800; classtype:misc-attack; sid:2102185; rev:8; metadata:created_at 2010_09_23, cve CVE_2003_0252, confidence Medium, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)
Suricata
GPL RPC mountd TCP mount path overflow attempt
suricata·2010-09-23
CVE-2003-0252 GPL RPC mountd TCP mount path overflow attempt
GPL RPC mountd TCP mount path overflow attempt
Rule: alert tcp $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL RPC mountd TCP mount path overflow attempt"; flow:established,to_server; content:"|00 01 86 A5 00|"; depth:5; offset:16; content:"|00 00 00 01|"; within:4; distance:3; byte_jump:4,4,relative,align; byte_jump:4,4,relative,align; byte_test:4,>,1023,0,relative; content:"|00 00 00 00|"; depth:4; offset:8; reference:bugtraq,8179; reference:cve,2003-0252; reference:nessus,11800; classtype:misc-attack; sid:2102184; rev:9; metadata:created_at 2010_09_23, cve CVE_2003_0252, confidence Medium, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
No public exploits indexed.
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2004-014.0.txtftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.ascftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.aschttp://archive.cert.uni-stuttgart.de/bugtraq/2003/09/msg00309.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000833http://fedoranews.org/updates/FEDORA-2004-058.shtmlhttp://marc.info/?l=bugtraq&m=108118433222764&w=2http://rhn.redhat.com/errata/RHSA-2004-034.htmlhttp://rhn.redhat.com/errata/RHSA-2004-035.htmlhttp://secunia.com/advisories/10645http://secunia.com/advisories/10685http://secunia.com/advisories/10716http://secunia.com/advisories/10772http://secunia.com/advisories/10823http://secunia.com/advisories/11219http://secunia.com/advisories/11262http://secunia.com/advisories/11268http://secunia.com/advisories/11296http://secunia.com/advisories/9833http://security.gentoo.org/glsa/glsa-200403-09.xmlhttp://www.debian.org/security/2004/dsa-424http://www.mandriva.com/security/advisories?name=MDKSA-2004:007http://www.redhat.com/archives/fedora-legacy-announce/2004-May/msg00002.htmlhttp://www.securityfocus.com/bid/8658https://exchange.xforce.ibmcloud.com/vulnerabilities/13247https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A822ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2004-014.0.txtftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.ascftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.aschttp://archive.cert.uni-stuttgart.de/bugtraq/2003/09/msg00309.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000833http://fedoranews.org/updates/FEDORA-2004-058.shtmlhttp://marc.info/?l=bugtraq&m=108118433222764&w=2http://rhn.redhat.com/errata/RHSA-2004-034.htmlhttp://rhn.redhat.com/errata/RHSA-2004-035.htmlhttp://secunia.com/advisories/10645http://secunia.com/advisories/10685http://secunia.com/advisories/10716http://secunia.com/advisories/10772http://secunia.com/advisories/10823http://secunia.com/advisories/11219http://secunia.com/advisories/11262http://secunia.com/advisories/11268http://secunia.com/advisories/11296http://secunia.com/advisories/9833http://security.gentoo.org/glsa/glsa-200403-09.xmlhttp://www.debian.org/security/2004/dsa-424http://www.mandriva.com/security/advisories?name=MDKSA-2004:007http://www.redhat.com/archives/fedora-legacy-announce/2004-May/msg00002.htmlhttp://www.securityfocus.com/bid/8658https://exchange.xforce.ibmcloud.com/vulnerabilities/13247https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A822
2004-01-20
Published