CVE-2004-1773

2005-03-2805:00:00

Debian Security Bug Tracker

security-tracker.debian.org

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

75.2%

JSON

Multiple buffer overflows in sharutils 4.2.1 and earlier may allow attackers to execute arbitrary code via (1) long output from wc to shar, or (2) unknown vectors in unshar.

OSVersionArchitecturePackageVersionFilename
Debian12allsharutils< 1:4.2.1-12sharutils_1:4.2.1-12_all.deb
Debian11allsharutils< 1:4.2.1-12sharutils_1:4.2.1-12_all.deb
Debian999allsharutils< 1:4.2.1-12sharutils_1:4.2.1-12_all.deb
Debian13allsharutils< 1:4.2.1-12sharutils_1:4.2.1-12_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	sharutils	< 1:4.2.1-12	sharutils_1:4.2.1-12_all.deb
Debian	11	all	sharutils	< 1:4.2.1-12	sharutils_1:4.2.1-12_all.deb
Debian	999	all	sharutils	< 1:4.2.1-12	sharutils_1:4.2.1-12_all.deb
Debian	13	all	sharutils	< 1:4.2.1-12	sharutils_1:4.2.1-12_all.deb