Medium
CVSS 4.6
Overview
Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative "pathlen" value to be used.
CVE-2003-0848
Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions...
Risk analysis
This vulnerability is rated 🟡 MEDIUM.
- CVSS: 4.6 (MEDIUM)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.