← Back

CVE-2003-0516

nvd nist
Published: Aug 18, 2003Modified: Apr 16, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings.

Affected (1)

Products: Gert Doering: Mgetty
Gert Doering
1 product
Mgetty
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Mgetty
Up to 1.1.28

References (2)

ftp://alpha.greenie.net/pub/mgetty/source/1.1/mgetty1.1.29-Nov25.tar.gz (unsafe URL)
Source: cve@mitre.org
Patch
ftp://alpha.greenie.net/pub/mgetty/source/1.1/mgetty1.1.29-Nov25.tar.gz (unsafe URL)
Source: af854a3a-2127-422b-91ae-364da2661108
Patch

Timeline

No history available yet.