CVE-2003-0805

UMN gopher daemon <3.0.6 - Buffer Overflow

Title source: llm

Description

Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.

Exploits (2)

exploitdb WORKING POC VERIFIED

by V9 · cremotelinux

https://www.exploit-db.com/exploits/22894

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by V9 · cremotelinux

https://www.exploit-db.com/exploits/22893

View Code ZIP pw:eip

References (3)

[Mailing List] http://marc.info/?l=bugtraq&m=105804485302211&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=106123498310717&w=2

[Patch, Vendor Advisory] http://www.debian.org/security/2003/dsa-387

Scores

EPSS 0.0728

EPSS Percentile 91.7%

Details

Status published

Products (10)

university_of_minnesota/gopherd 2.0.3

university_of_minnesota/gopherd 2.0.4

university_of_minnesota/gopherd 2.3

university_of_minnesota/gopherd 2.3.1

university_of_minnesota/gopherd 3.0.0

university_of_minnesota/gopherd 3.0.1

university_of_minnesota/gopherd 3.0.2

university_of_minnesota/gopherd 3.0.3

university_of_minnesota/gopherd 3.0.4

university_of_minnesota/gopherd 3.0.5

Published Oct 06, 2003

Tracked Since Feb 18, 2026