CVE-2003-0326 Information

Description

Integer overflow in parse_decode_path() of slocate may allow attackers to execute arbitrary code via a LOCATE_PATH with a large number of :\ (colon) characters whose count is used in a call to malloc.

Reference

http://marc.info/?l=bugtraq&m=105337692202626&w=2 http://www.securityfocus.com/bid/7629