CVE-2004-1772
published 2004-12-31CVE-2004-1772: Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows local users to execute arbitrary code via a long -o command line argument.
medium4.6CVSS 3.1
AVLACLAuNCPIPAP
Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows local users to execute arbitrary code via a long -o command line argument.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | sharutils | < sharutils 1:4.2.1-11 (bookworm) | sharutils 1:4.2.1-11 (bookworm) |
| gnu | sharutils | — | — |
| gnu | sharutils | — | — |
| gnu | sharutils | >= 0 < 1:4.2.1-11 | 1:4.2.1-11 |
| gnu | sharutils | >= 0 < 1:4.2.1-11 | 1:4.2.1-11 |
| gnu | sharutils | >= 0 < 1:4.2.1-11 | 1:4.2.1-11 |
| gnu | sharutils | >= 0 < 1:4.2.1-11 | 1:4.2.1-11 |
CVSS provenance
nvd4.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv4.6MEDIUM