← CVECheck
HomeVulnerabilities

CVE-2003-0849 — HIGH severity vulnerability (Buffer overflow in net.c for cfengine 2.x before 2.0.8 allow)

Buffer overflow in net.c for cfengine 2.x before 2.0.8 allows remote attackers to execute arbitrary code via certain packets with modified length values, which is trusted by the ReceiveTransaction function when using a buffer provided by the BusyWithConnection function.

CVE IDCVE-2003-0849
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2003-11-17
Last modified2026-04-16
DescriptionBuffer overflow in net.c for cfengine 2.x before 2.0.8 allows remote attackers to execute arbitrary code via certain packets with modified length values, which is trusted by the ReceiveTransaction function when using a buffer provided by the BusyWithConnection function.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →