CVE-2003-0102

EPSS 5.7%

file - buffer overflow

Published: 3/18/2003Modified: 4/28/2026

Description

Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).

Affected packages (2)

Debian/filefrom 0, < 3.40-1.1
Debian/filefrom 0, < 3.37-3.1.woody.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0102