CVE-2003-0854
EPSS 0.23%
Description
ls in the fileutils or coreutils packages allows local users to consume a large amount of memory via a large -w value, which can be remotely exploited via applications that use ls, such as wu-ftpd.
How to fix CVE-2003-0854
To remediate CVE-2003-0854, upgrade the affected package to a fixed version below.
- Debian/coreutils—upgrade to 5.2.1-1 or later
Is CVE-2003-0854 being exploited?
Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 5.2.1-1