Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.
References
Configurations
History
20 Nov 2024, 23:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=bugtraq&m=108675120224531&w=2 - | |
References | () http://www.gentoo.org/security/en/glsa/glsa-200406-14.xml - Vendor Advisory | |
References | () http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html - | |
References | () http://www.securityfocus.com/bid/10497 - |
Information
Published : 2004-08-06 04:00
Updated : 2024-11-20 23:48
NVD link : CVE-2004-0548
Mitre link : CVE-2004-0548
CVE.ORG link : CVE-2004-0548
JSON object : View
Products Affected
gentoo
- linux
gnu
- aspell
CWE