CVE-2003-0107

Name of the Vulnerable Software and Affected Versions zlib version 1.1.4

Description The issue is related to a buffer overflow in the gzprintf function in zlib. This can occur when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf. The exploitation of this issue may lead to a denial of service or possibly the execution of arbitrary code. It can also result in the violation of confidentiality, integrity, and availability of protected information. The exploitation can be carried out remotely.

Recommendations For zlib version 1.1.4, consider updating to a newer version that addresses the buffer overflow issue in the gzprintf function. As a temporary workaround, consider restricting the use of the gzprintf function until a patch is available.