Zlib Compression Library gzprintf() Buffer Overrun Vulnerability

Bugtraq ID: 6913
Class: Boundary Condition Error
CVE: CVE-2003-0107
CVE-2003-0107
Remote: Yes
Local: No
Published: Feb 23 2003 12:00AM
Updated: Apr 06 2007 02:52AM
Credit: The discovery of this vulnerability has been credited to Richard Kettlewell <rjk@greenend.org.uk>.
Vulnerable: zlib zlib 1.1.4
+ Caldera OpenLinux Server 3.1.1
+ Caldera OpenLinux Server 3.1
+ Caldera OpenLinux Workstation 3.1.1
+ Caldera OpenLinux Workstation 3.1
+ GLT GLT 0.6
+ NetBSD NetBSD 1.6
+ NetBSD NetBSD 1.5.3
+ NetBSD NetBSD 1.5.2
+ NetBSD NetBSD 1.5.1
+ NetBSD NetBSD 1.5
- NullSoft Winamp 2.79
+ OpenPKG OpenPKG 1.2
+ OpenPKG OpenPKG 1.1
+ Red Hat Enterprise Linux AS 2.1 IA64
+ Red Hat Enterprise Linux AS 2.1
+ RedHat Enterprise Linux ES 2.1 IA64
+ RedHat Enterprise Linux ES 2.1
+ RedHat Enterprise Linux WS 2.1 IA64
+ RedHat Enterprise Linux WS 2.1
+ RedHat Linux Advanced Work Station 2.1
+ Sun Cobalt Qube 3
+ Sun Cobalt Qube3 4000WG
+ Sun Cobalt Qube3 Japanese 4000WGJ
+ Sun Cobalt Qube3 Japanese w/ Caching and RAID 4100WGJ
+ Sun Cobalt Qube3 Japanese w/Caching 4010WGJ
+ Sun Cobalt Qube3 w/ Caching and RAID 4100WG
+ Sun Cobalt Qube3 w/Caching 4010WG
+ Sun Cobalt RaQ 4
+ Sun Cobalt RaQ XTR
+ Sun Cobalt RaQ XTR 3500R
+ Sun Cobalt RaQ XTR Japanese 3500R-ja
+ Sun Cobalt RaQ4 3001R
+ Sun Cobalt RaQ4 Japanese RAID 3100R-ja
+ Sun Cobalt RaQ4 RAID 3100R
+ Sun Linux 5.0
VMWare ESX Server 3.0.1
VMWare ESX Server 3.0
Sun SunOS 5.9 _x86
Sun SunOS 5.9
SGI ProPack 2.3
SGI ProPack 2.2.1
SCO Open Server 5.0.7
SCO Open Server 5.0.6
SCO Open Server 5.0.5
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus