CVE-2003-0805
gopher - buffer overflows
EPSS 7.3%
Description
Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.
How to fix CVE-2003-0805
To remediate CVE-2003-0805, upgrade the affected package to a fixed version below.
- Debian/gopher—upgrade to 3.0.6 or later
- Debian/gopher—upgrade to 3.0.3woody1 or later
Is CVE-2003-0805 being exploited?
Moderate — EPSS is 7.3%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 3.0.6
- from 0, < 3.0.3woody1