CVE-2005-0086

Published: May 2, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Heap-based buffer overflow in less in Red Hat Enterprise Linux 3 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted file, as demonstrated using the UTF-8 locale.

Affected (4)

Products: Redhat: Enterprise Linux, Enterprise Linux Desktop

Redhat

2 products

Enterprise Linux

Enterprise Linux Desktop

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux	Version 3.0
Redhat Enterprise Linux Desktop	Version 3.0

References (10)

http://www.redhat.com/support/errata/RHSA-2005-068.html

Source: cve@mitre.org

Vendor Advisory

https://bugzilla.fedora.us/show_bug.cgi?id=2404

Source: cve@mitre.org

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=145527

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/19131

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11027

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-068.html