Lucene search

PRIOn knowledge basePRION:CVE-2008-1688

HistoryApr 09, 2008 - 7:05 p.m.

Design/Logic Flaw

2008-04-0919:05:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.021 Low

EPSS

Percentile

88.9%

JSON

Unspecified vulnerability in GNU m4 before 1.4.11 might allow context-dependent attackers to execute arbitrary code, related to improper handling of filenames specified with the -F option. NOTE: it is not clear when this issue crosses privilege boundaries.

CPENameOperatorVersion
m4eq1.4.8
m4eq1.4.10
m4eq1.4.3
m4eq1.4.6
m4eq1.4.9
m4eq1.4.7
m4eq1.4.1
m4eq1.4.4
m4eq1.4.2
m4eq1.4.5

Name	Operator	Version
m4	eq	1.4.8
m4	eq	1.4.10
m4	eq	1.4.3
m4	eq	1.4.6
m4	eq	1.4.9
m4	eq	1.4.7
m4	eq	1.4.1
m4	eq	1.4.4
m4	eq	1.4.2
m4	eq	1.4.5

References

osvdb.org/44272

secunia.com/advisories/29671

secunia.com/advisories/29729

slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.510612

www.openwall.com/lists/oss-security/2008/04/07/1

www.openwall.com/lists/oss-security/2008/04/07/3

www.securityfocus.com/bid/28688

www.vupen.com/english/advisories/2008/1151/references

exchange.xforce.ibmcloud.com/vulnerabilities/41704

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.021 Low

EPSS

Percentile

88.9%

JSON

Related for PRION:CVE-2008-1688