CVE-2003-0805

Published: Oct 6, 2003Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.

Affected (10)

Products: University Of Minnesota: Gopherd

University Of Minnesota

1 product

Gopherd

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
University Of Minnesota Gopherd	Version 2.0.3
University Of Minnesota Gopherd	Version 2.0.4
University Of Minnesota Gopherd	Version 2.3.1
University Of Minnesota Gopherd	Version 2.3
University Of Minnesota Gopherd	Version 3.0.0
University Of Minnesota Gopherd	Version 3.0.1
University Of Minnesota Gopherd	Version 3.0.2
University Of Minnesota Gopherd	Version 3.0.3
University Of Minnesota Gopherd	Version 3.0.4
University Of Minnesota Gopherd	Version 3.0.5

References (6)

http://marc.info/?l=bugtraq&m=105804485302211&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=106123498310717&w=2

Source: cve@mitre.org

http://www.debian.org/security/2003/dsa-387

Source: cve@mitre.org

PatchVendor Advisory

http://marc.info/?l=bugtraq&m=105804485302211&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=106123498310717&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2003/dsa-387

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.