← CVECheck
HomeVulnerabilities

CVE-2003-0326 — MEDIUM severity vulnerability (Integer overflow in parse_decode_path() of slocate may allow)

Integer overflow in parse_decode_path() of slocate may allow attackers to execute arbitrary code via a LOCATE_PATH with a large number of ":" (colon) characters, whose count is used in a call to malloc.

CVE IDCVE-2003-0326
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2003-06-09
Last modified2026-04-16
DescriptionInteger overflow in parse_decode_path() of slocate may allow attackers to execute arbitrary code via a LOCATE_PATH with a large number of ":" (colon) characters, whose count is used in a call to malloc.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →