University Of Minnesota Gopher vulnerabilities
5 known vulnerabilities affecting university_of_minnesota/gopher.
Total CVEs
5
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH5
Vulnerabilities
Page 1 of 1
CVE-2005-2772P3HIGHCVSS 7.5PoCv3.0.92005-09-02
CVE-2005-2772 [HIGH] CVE-2005-2772: Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote ma
Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via (1) a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and (2) certain arguments when launching third party programs such as a web browser from a web link, which is not properly handled
nvdosv
CVE-2003-0805P4HIGHCVSS 7.5PoC≥ 0, < 3.0.62003-10-06
CVE-2003-0805 [HIGH] CVE-2003-0805: Multiple buffer overflows in UMN gopher daemon (gopherd) 2
Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.
osv
CVE-2004-0560P4HIGHCVSS 7.5≥ 0, < 3.0.62004-12-31
CVE-2004-0560 [HIGH] CVE-2004-0560: Integer overflow in gopher daemon (gopherd) 3
Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted content of a certain size that triggers the overflow.
osv
CVE-2004-0561P4HIGHCVSS 7.5≥ 0, < 3.0.62004-12-31
CVE-2004-0561 [HIGH] CVE-2004-0561: Format string vulnerability in the log routine for gopher daemon (gopherd) 3
Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
osv
CVE-2005-1853P4HIGHCVSS 7.2v3.0.52005-08-03
CVE-2005-1853 [HIGH] CVE-2005-1853: gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local use
gopher.c in the Gopher client 3.0.5 does not properly create temporary files, which allows local users to gain privileges.
nvdosv