{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2003-10-06T00:00:00.000Z","descriptions":[{"lang":"en","value":"Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative \"pathlen\" value to be used."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-10-10T00:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"CSSA-2004-001.0","tags":["vendor-advisory","x_refsource_SCO"],"url":"ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2004-001.0/CSSA-2004-001.0.txt"},{"name":"20040202-01-U","tags":["vendor-advisory","x_refsource_SGI"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc"},{"name":"RHSA-2004:040","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"http://rhn.redhat.com/errata/RHSA-2004-040.html"},{"name":"20040201-01-U","tags":["vendor-advisory","x_refsource_SGI"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.asc"},{"name":"RHSA-2004:041","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"http://www.redhat.com/support/errata/RHSA-2004-041.html"},{"tags":["x_refsource_MISC"],"url":"http://www.ebitech.sk/patrik/SA/SA-20031006-A.txt"},{"name":"10720","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/10720"},{"name":"10686","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/10686"},{"name":"10722","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/10722"},{"name":"MDKSA-2004:004","tags":["vendor-advisory","x_refsource_MANDRAKE"],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2004:004"},{"name":"10702","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/10702"},{"tags":["x_refsource_MISC"],"url":"http://www.ebitech.sk/patrik/SA/SA-20031006.txt"},{"name":"DSA-428","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"http://www.debian.org/security/2004/dsa-428"},{"name":"20031011 SA-20031006 slocate buffer overflow - exploitation proof","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://marc.info/?l=bugtraq&m=106589631819348&w=2"},{"name":"10683","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/10683"},{"name":"9962","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/9962/"},{"name":"FEDORA-2004-059","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"http://www.redhat.com/archives/fedora-announce-list/2004-January/msg00009.html"},{"name":"oval:org.mitre.oval:def:11033","tags":["vdb-entry","signature","x_refsource_OVAL"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11033"},{"name":"10670","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/10670"},{"name":"20031006 SA-20031006 slocate vulnerability","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://marc.info/?l=bugtraq&m=106546447321274&w=2"},{"name":"10698","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/10698"},{"name":"2004-0005","tags":["vendor-advisory","x_refsource_TRUSTIX"],"url":"http://www.trustix.org/errata/misc/2004/TSL-2004-0005-slocate.asc.txt"},{"name":"oval:org.mitre.oval:def:821","tags":["vdb-entry","signature","x_refsource_OVAL"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A821"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2003-0848","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative \"pathlen\" value to be used."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"CSSA-2004-001.0","refsource":"SCO","url":"ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2004-001.0/CSSA-2004-001.0.txt"},{"name":"20040202-01-U","refsource":"SGI","url":"ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc"},{"name":"RHSA-2004:040","refsource":"REDHAT","url":"http://rhn.redhat.com/errata/RHSA-2004-040.html"},{"name":"20040201-01-U","refsource":"SGI","url":"ftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.asc"},{"name":"RHSA-2004:041","refsource":"REDHAT","url":"http://www.redhat.com/support/errata/RHSA-2004-041.html"},{"name":"http://www.ebitech.sk/patrik/SA/SA-20031006-A.txt","refsource":"MISC","url":"http://www.ebitech.sk/patrik/SA/SA-20031006-A.txt"},{"name":"10720","refsource":"SECUNIA","url":"http://secunia.com/advisories/10720"},{"name":"10686","refsource":"SECUNIA","url":"http://secunia.com/advisories/10686"},{"name":"10722","refsource":"SECUNIA","url":"http://secunia.com/advisories/10722"},{"name":"MDKSA-2004:004","refsource":"MANDRAKE","url":"http://www.mandriva.com/security/advisories?name=MDKSA-2004:004"},{"name":"10702","refsource":"SECUNIA","url":"http://secunia.com/advisories/10702"},{"name":"http://www.ebitech.sk/patrik/SA/SA-20031006.txt","refsource":"MISC","url":"http://www.ebitech.sk/patrik/SA/SA-20031006.txt"},{"name":"DSA-428","refsource":"DEBIAN","url":"http://www.debian.org/security/2004/dsa-428"},{"name":"20031011 SA-20031006 slocate buffer overflow - exploitation proof","refsource":"BUGTRAQ","url":"http://marc.info/?l=bugtraq&m=106589631819348&w=2"},{"name":"10683","refsource":"SECUNIA","url":"http://secunia.com/advisories/10683"},{"name":"9962","refsource":"SECUNIA","url":"http://secunia.com/advisories/9962/"},{"name":"FEDORA-2004-059","refsource":"FEDORA","url":"http://www.redhat.com/archives/fedora-announce-list/2004-January/msg00009.html"},{"name":"oval:org.mitre.oval:def:11033","refsource":"OVAL","url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11033"},{"name":"10670","refsource":"SECUNIA","url":"http://secunia.com/advisories/10670"},{"name":"20031006 SA-20031006 slocate vulnerability","refsource":"BUGTRAQ","url":"http://marc.info/?l=bugtraq&m=106546447321274&w=2"},{"name":"10698","refsource":"SECUNIA","url":"http://secunia.com/advisories/10698"},{"name":"2004-0005","refsource":"TRUSTIX","url":"http://www.trustix.org/errata/misc/2004/TSL-2004-0005-slocate.asc.txt"},{"name":"oval:org.mitre.oval:def:821","refsource":"OVAL","url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A821"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-08T02:05:12.648Z"},"title":"CVE Program Container","references":[{"name":"CSSA-2004-001.0","tags":["vendor-advisory","x_refsource_SCO","x_transferred"],"url":"ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2004-001.0/CSSA-2004-001.0.txt"},{"name":"20040202-01-U","tags":["vendor-advisory","x_refsource_SGI","x_transferred"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc"},{"name":"RHSA-2004:040","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"http://rhn.redhat.com/errata/RHSA-2004-040.html"},{"name":"20040201-01-U","tags":["vendor-advisory","x_refsource_SGI","x_transferred"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.asc"},{"name":"RHSA-2004:041","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"http://www.redhat.com/support/errata/RHSA-2004-041.html"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.ebitech.sk/patrik/SA/SA-20031006-A.txt"},{"name":"10720","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/10720"},{"name":"10686","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/10686"},{"name":"10722","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/10722"},{"name":"MDKSA-2004:004","tags":["vendor-advisory","x_refsource_MANDRAKE","x_transferred"],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2004:004"},{"name":"10702","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/10702"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.ebitech.sk/patrik/SA/SA-20031006.txt"},{"name":"DSA-428","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"http://www.debian.org/security/2004/dsa-428"},{"name":"20031011 SA-20031006 slocate buffer overflow - exploitation proof","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://marc.info/?l=bugtraq&m=106589631819348&w=2"},{"name":"10683","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/10683"},{"name":"9962","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/9962/"},{"name":"FEDORA-2004-059","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"http://www.redhat.com/archives/fedora-announce-list/2004-January/msg00009.html"},{"name":"oval:org.mitre.oval:def:11033","tags":["vdb-entry","signature","x_refsource_OVAL","x_transferred"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11033"},{"name":"10670","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/10670"},{"name":"20031006 SA-20031006 slocate vulnerability","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://marc.info/?l=bugtraq&m=106546447321274&w=2"},{"name":"10698","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/10698"},{"name":"2004-0005","tags":["vendor-advisory","x_refsource_TRUSTIX","x_transferred"],"url":"http://www.trustix.org/errata/misc/2004/TSL-2004-0005-slocate.asc.txt"},{"name":"oval:org.mitre.oval:def:821","tags":["vdb-entry","signature","x_refsource_OVAL","x_transferred"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A821"}]}]},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2003-0848","datePublished":"2003-10-09T04:00:00.000Z","dateReserved":"2003-10-08T00:00:00.000Z","dateUpdated":"2024-08-08T02:05:12.648Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}