Oval Definition:
oval:org.mitre.oval:def:822
Revision Date
:
2007-04-25
Version
:
17
Title
:
Midnight Commander vfs_s_resolve_symlink BO
Description
:
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2003-1023
Platform(s)
:
Red Hat Linux 9
Product(s)
:
Midnight Commander
Definition Synopsis
Software section
Red Hat 9 is installed
AND
ix86 architecture
AND
mc version is less than 4.6.0-7.9
AND
Configuration section
/usr/bin/mc is executable
/usr/bin/mc is executable
OR
/usr/bin/mc is executable
OR
/usr/bin/mc is executable
BACK