CVE-2004-0548

Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:aspell:0.50.5:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*

History

20 Nov 2024, 23:48

Type Values Removed Values Added
References () http://marc.info/?l=bugtraq&m=108675120224531&w=2 - () http://marc.info/?l=bugtraq&m=108675120224531&w=2 -
References () http://www.gentoo.org/security/en/glsa/glsa-200406-14.xml - Vendor Advisory () http://www.gentoo.org/security/en/glsa/glsa-200406-14.xml - Vendor Advisory
References () http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html - () http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html -
References () http://www.securityfocus.com/bid/10497 - () http://www.securityfocus.com/bid/10497 -

Information

Published : 2004-08-06 04:00

Updated : 2024-11-20 23:48


NVD link : CVE-2004-0548

Mitre link : CVE-2004-0548

CVE.ORG link : CVE-2004-0548


JSON object : View

Products Affected

gentoo

  • linux

gnu

  • aspell