Description
Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows local users to execute arbitrary code via a long -o command line argument.
Affected products
- gnu / sharutils4.2 – 4.2
- gnu / sharutils4.2.1 – 4.2.1
References
- MAILING_LISThttp://marc.info/?l=bugtraq&m=108137386310299&w=2
- MISChttps://bugzilla.fedora.us/show_bug.cgi?id=2155
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11722
- MISChttp://www.securityfocus.com/bid/10066
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/15759
- MISChttp://www.securityfocus.com/archive/1/359639
- MISChttp://www.redhat.com/support/errata/RHSA-2005-377.html