Unrated severityNVD Advisory· Published Oct 20, 2003· Updated Apr 16, 2026

CVE-2003-0709

Description

Buffer overflow in the whois client, which is not setuid but is sometimes called from within CGI programs, may allow remote attackers to execute arbitrary code via a long command line option.

Affected products

Whois/Whois2 versions
cpe:2.3:a:whois:whois:4.5.7:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:whois:whois:4.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:whois:whois:4.6.6:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.zone-h.org/en/advisories/read/id=2925/nvdExploitPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000