CVE-2003-0028 in SGI IRIXinfo

Summary

Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391.

Reservation

01/10/2003

Disclosure

03/25/2003

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
20227	SGI IRIX XDR xdrmem_getbytes integer coercion	192	Not defined	Not defined	CVE-2003-0028
79	SuSE Linux RPC XDR glibc integer coercion	192	Proof-of-Concept	Official fix	CVE-2003-0028

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!