CVE - CVE-2003-0107

CVE-ID
CVE-2003-0107	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf, allows attackers to cause a denial of service or possibly execute arbitrary code.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20030222 buffer overrun in zlib 1.1.4 URL:http://online.securityfocus.com/archive/1/312869 BUGTRAQ:20030223 poc zlib sploit just for fun :) URL:http://marc.info/?l=bugtraq&m=104610337726297&w=2 BUGTRAQ:20030224 Re: buffer overrun in zlib 1.1.4 URL:http://marc.info/?l=bugtraq&m=104610536129508&w=2 BUGTRAQ:20030225 [sorcerer-spells] ZLIB-SORCERER2003-02-25 URL:http://marc.info/?l=bugtraq&m=104620610427210&w=2 CALDERA:CSSA-2003-011.0 URL:ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-011.0.txt CONECTIVA:CLSA-2003:619 URL:http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000619 GENTOO:GLSA-200303-25 URL:http://marc.info/?l=bugtraq&m=104887247624907&w=2 MANDRAKE:MDKSA-2003:033 URL:http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:033 NETBSD:NetBSD-SA2003-004 URL:ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-004.txt.asc REDHAT:RHSA-2003:079 URL:http://www.redhat.com/support/errata/RHSA-2003-079.html REDHAT:RHSA-2003:081 URL:http://www.redhat.com/support/errata/RHSA-2003-081.html SUNALERT:57405 URL:http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57405 CONFIRM:http://lists.apple.com/mhonarc/security-announce/msg00038.html CERT-VN:VU#142121 URL:http://www.kb.cert.org/vuls/id/142121 JVN:JVN#78689801 URL:http://jvn.jp/en/jp/JVN78689801/index.html JVNDB:JVNDB-2015-000066 URL:http://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000066.html BID:6913 URL:http://www.securityfocus.com/bid/6913 XF:zlib-gzprintf-bo(11381) URL:http://www.iss.net/security_center/static/11381.php OSVDB:6599 URL:http://www.osvdb.org/6599
Date Entry Created
20040901	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org