CVE-2003-1118

University OF California Seti AT Home - Buffer Overflow

Title source: rule

Description

Buffer overflow in the SETI@home client 3.03 and other versions allows remote attackers to cause a denial of service (client crash) and execute arbitrary code via a spoofed server response containing a long string followed by a \n (newline) character.

Exploits (1)

exploitdb WORKING POC VERIFIED

by zillion · cremotelinux

https://www.exploit-db.com/exploits/8

View Code ZIP pw:eip

References (4)

[Mailing List] http://lists.grok.org.uk/pipermail/full-disclosure/2003-April/004383.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/11731

[Patch] http://www.securityfocus.com/bid/7292

[Patch, Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/146785

Scores

EPSS 0.2435

EPSS Percentile 96.1%

Details

Status published

Products (5)

university_of_california/seti_at_home 3.3

university_of_california/seti_at_home 3.4

university_of_california/seti_at_home 3.5

university_of_california/seti_at_home 3.6

university_of_california/seti_at_home 3.7

Published Dec 31, 2003

Tracked Since Feb 18, 2026