Описание
Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gnu:aspell:0.50.5:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
EPSS
Процентиль: 41%
0.00184
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
около 21 года назад
Multiple stack-based buffer overflows in the word-list-compress functi ...
github
больше 3 лет назад
Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.
EPSS
Процентиль: 41%
0.00184
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other