CVE-2003-0372 Information

Description

Signed integer vulnerability in libnasl in Nessus before 2.0.6 allows local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code by causing a negative argument to be provided to the insstr function as used in a NASL script.

Reference

http://marc.info/?l=bugtraq&m=105364059803427&w=2 http://marc.info/?l=bugtraq&m=105369506714849&w=2 http://www.securityfocus.com/bid/7664