CVE-2003-0826

lsh daemon (lshd) does not properly return from certain functions in (1) read_line.c, (2) channel_commands.c, or (3) client_keyexchange.c when long input is provided, which could allow remote attackers to execute arbitrary code via a heap-based buffer overflow attack.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:gnu:lsh:1.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:lsh:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:lsh:1.4.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2003-10-06 04:00

Updated : 2023-12-10 10:17


NVD link : CVE-2003-0826

Mitre link : CVE-2003-0826

CVE.ORG link : CVE-2003-0826


JSON object : View

Products Affected

gnu

  • lsh