CVE-2003-0390

Name of the Vulnerable Software and Affected Versions: Options Parsing Tool (OPT) shared library versions 3.18 and earlier

Description: The issue is related to multiple buffer overflows in the OPT shared library. When used in setuid programs, local users may be able to execute arbitrary code via long command line options that are fed into macros such as opt warn 2, as used in functions such as opt atoi().

Recommendations: For Options Parsing Tool (OPT) shared library versions 3.18 and earlier, consider updating to a version later than 3.18 to resolve the issue. As a temporary workaround, consider restricting the use of the OPT shared library in setuid programs to minimize the risk of exploitation.