VYPR
Unrated severityNVD Advisory· Published Feb 7, 2003· Updated Jun 16, 2026

CVE-2003-0015

CVE-2003-0015

Description

Double-free vulnerability in CVS 1.11.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed Directory request, as demonstrated by bypassing write checks to execute Update-prog and Checkin-prog commands.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • Nongnu/Cvs9 versions
    cpe:2.3:a:cvs:cvs:1.10.7:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:cvs:cvs:1.10.7:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.10.8:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.1p1:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.4:*:*:*:*:*:*:*
    • (no CPE)range: <=1.11.4
  • FreeBSD/FreeBSD5 versions
    cpe:2.3:o:freebsd:freebsd:4.4:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:freebsd:freebsd:4.4:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:4.5:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:4.6:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:4.7:*:*:*:*:*:*:*
    • cpe:2.3:o:freebsd:freebsd:5.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.