Exploitation Summary
EIP tracks 1 public exploit for CVE-2003-0056. PoCs published by USG team.
AI-analyzed exploit summary The exploit demonstrates a buffer overflow in slocate by supplying excessively long arguments to the '-c' and '-r' command-line options. This can potentially overwrite an instruction pointer, allowing arbitrary code execution with elevated group privileges due to slocate's setgid installation.
Description
Buffer overflow in secure locate (slocate) before 2.7 allows local users to execute arbitrary code via a long (1) -c or (2) -r command line argument.
Exploits (1)
The exploit demonstrates a buffer overflow in slocate by supplying excessively long arguments to the '-c' and '-r' command-line options. This can potentially overwrite an instruction pointer, allowing arbitrary code execution with elevated group privileges due to slocate's setgid installation.