CVE-2004-1772

Name of the Vulnerable Software and Affected Versions sharutils version 4.2.1 GNU sharutils version 4.2.1

Description The issue concerns multiple vulnerabilities in the sharutils package, which can lead to breaches in confidentiality, integrity, and availability of protected information. Exploitation of these vulnerabilities can be done remotely. A specific vulnerability is a stack-based buffer overflow in the shar utility, allowing local users to execute arbitrary code via a long -o command line argument.

Recommendations For sharutils version 4.2.1, consider restricting access to the shar utility until a patch is available. For GNU sharutils version 4.2.1, avoid using long -o command line arguments in the shar utility to minimize the risk of exploitation.