Cscope Command Line reffile Argument Overflow

2006-08-24T03:04:18
ID OSVDB:28136
Type osvdb
Reporter Will Drewry(wad@google.com)
Modified 2006-08-24T03:04:18

Description

Vulnerability Description

Cscope contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a boundary error occurs within the parsing of command line arguments. It is possible that the flaw may allow the attacker to cause stack-based buffer overflow by supplying a very long 'reffile' argument resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, the vendor has released a patch to address this vulnerability.

Short Description

Cscope contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a boundary error occurs within the parsing of command line arguments. It is possible that the flaw may allow the attacker to cause stack-based buffer overflow by supplying a very long 'reffile' argument resulting in a loss of integrity.

References:

Vendor URL: http://cscope.sourceforge.net/ Vendor Specific Solution URL: http://sourceforge.net/mailarchive/forum.php?thread_id=30266760&forum_id=33500 Vendor Specific Solution URL: http://sourceforge.net/mailarchive/forum.php?thread_id=30266761&forum_id=33500 Vendor Specific Advisory URL Vendor Specific Advisory URL Secunia Advisory ID:21601 Secunia Advisory ID:22239 Secunia Advisory ID:22515 Related OSVDB ID: 28135 CVE-2006-4262