Multiple Vendor C Library realpath() Off-By-One Buffer Overflow Vulnerability

Bugtraq ID: 8315
Class: Boundary Condition Error
CVE: CVE-2003-0466
Remote: Yes
Local: No
Published: Jul 31 2003 12:00AM
Updated: May 15 2007 07:08PM
Credit: Discovery of this vulnerability has been credited to Janusz Niewiadomski <funkysh@isec.pl> and Wojciech Purczynski <cliph@isec.pl>.
Vulnerable: Washington University wu-ftpd 2.6.2
Washington University wu-ftpd 2.6.1
Washington University wu-ftpd 2.6 .0
Washington University wu-ftpd 2.5 .0
Sun Solaris 9_x86
Sun Solaris 9
SSH Communications Security SSH2 3.2.9 .1
Redhat wu-ftpd-2.6.2-8.i386.rpm
Redhat wu-ftpd-2.6.2-5.i386.rpm
Redhat wu-ftpd-2.6.1-18.ia64.rpm
Redhat wu-ftpd-2.6.1-18.i386.rpm
Redhat wu-ftpd-2.6.1-16.ppc.rpm
Redhat wu-ftpd-2.6.1-16.i386.rpm
OpenBSD OpenBSD 2.9
OpenBSD OpenBSD 2.8
OpenBSD OpenBSD 2.7
OpenBSD OpenBSD 2.6
OpenBSD OpenBSD 2.5
OpenBSD OpenBSD 2.4
OpenBSD OpenBSD 2.3
OpenBSD OpenBSD 2.2
OpenBSD OpenBSD 2.1
OpenBSD OpenBSD 2.0
OpenBSD OpenBSD 3.3
OpenBSD OpenBSD 3.2
OpenBSD OpenBSD 3.1
OpenBSD OpenBSD 3.0
NetBSD NetBSD 1.6.1
NetBSD NetBSD 1.6
NetBSD NetBSD 1.5.3
NetBSD NetBSD 1.5.2
NetBSD NetBSD 1.5.1
NetBSD NetBSD 1.5
HP HP-UX 11.22
HP HP-UX 11.11
HP HP-UX 11.0
FreeBSD FreeBSD 5.0 alpha
FreeBSD FreeBSD 5.0
FreeBSD FreeBSD 4.8 -PRERELEASE
FreeBSD FreeBSD 4.8
FreeBSD FreeBSD 4.7 -STABLE
FreeBSD FreeBSD 4.7 -RELEASE
FreeBSD FreeBSD 4.7
FreeBSD FreeBSD 4.6.2
FreeBSD FreeBSD 4.6 -STABLE
FreeBSD FreeBSD 4.6 -RELEASE
FreeBSD FreeBSD 4.6
FreeBSD FreeBSD 4.5 -STABLEpre2002-03-07
FreeBSD FreeBSD 4.5 -STABLE
FreeBSD FreeBSD 4.5 -RELEASE
FreeBSD FreeBSD 4.5
FreeBSD FreeBSD 4.4 -STABLE
FreeBSD FreeBSD 4.4 -RELENG
FreeBSD FreeBSD 4.4
FreeBSD FreeBSD 4.3 -STABLE
FreeBSD FreeBSD 4.3 -RELENG
FreeBSD FreeBSD 4.3 -RELEASE
FreeBSD FreeBSD 4.3
FreeBSD FreeBSD 4.2 -STABLEpre122300
FreeBSD FreeBSD 4.2 -STABLEpre050201
FreeBSD FreeBSD 4.2 -STABLE
FreeBSD FreeBSD 4.2 -RELEASE
FreeBSD FreeBSD 4.2
FreeBSD FreeBSD 4.1.1 -STABLE
FreeBSD FreeBSD 4.1.1 -RELEASE
FreeBSD FreeBSD 4.1.1
FreeBSD FreeBSD 4.1
FreeBSD FreeBSD 4.0 .x
FreeBSD FreeBSD 4.0 alpha
FreeBSD FreeBSD 4.0
FreeBSD FreeBSD 3.5.1 -STABLEpre2001-07-20
Apple Mac OS X Server 10.2.6
Apple Mac OS X 10.2.6
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus