CVE-2003-0390

Options Parsing Tool <3.18 - Buffer Overflow

Title source: llm

Description

Multiple buffer overflows in Options Parsing Tool (OPT) shared library 3.18 and earlier, when used in setuid programs, may allow local users to execute arbitrary code via long command line options that are fed into macros such as opt_warn_2, as used in functions such as opt_atoi.

Exploits (2)

exploitdb WORKING POC VERIFIED

by jlanthea · perllocallinux

https://www.exploit-db.com/exploits/22538

View Code ZIP pw:eip

exploitdb STUB VERIFIED

by kf · cdoslinux

https://www.exploit-db.com/exploits/22537

View Code ZIP pw:eip

References (3)

[Mailing List] http://marc.info/?l=bugtraq&m=105371246204866&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=105121918523320&w=2

[Patch] http://nis-www.lanl.gov/~jt/Software/opt/opt-3.19.tar.gz

Scores

EPSS 0.0031

EPSS Percentile 54.1%

Details

Status published

Products (1)

james_theiler/opt < 3.18

Published Jul 02, 2003

Tracked Since Feb 18, 2026