10 matches found
EUVD-2008-3956
Malware in sbrugna...
gmanedit多个缓冲区溢出漏洞
BUGTRAQ ID: 31040 Gmanedit是类似于HTML编辑器的GNOME用户手册编辑器。 Gmanedit中存在多个缓冲区溢出漏洞,在启动向导后如果在手册的标题或名称中输入了超长行的话,或提供了超长的COMMAND=参数,或对编辑器提供了200kb的文件,就可以触发这些溢出,导致执行任意代码。 以下是callbacks.c文件中的有漏洞代码段: 638 gchar command50,datos; 639 gint exitstatus; 640 641 / I read conf file /.gmaneditrc / 642 643 strcpytemp,...
CVE-2008-3971
Heap-based buffer overflow in the openmanfile function in callbacks.c in gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, which is not properly handled during utf8 conversion. NOTE: another overflow was reported using a configuration file, but that vector...
CVE-2008-3971
Heap-based buffer overflow in the openmanfile function in callbacks.c in gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, which is not properly handled during utf8 conversion. NOTE: another overflow was reported using a configuration file, but that vector...
DEBIAN-CVE-2008-3971
Heap-based buffer overflow in the openmanfile function in callbacks.c in gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, which is not properly handled during utf8 conversion. NOTE: another overflow was reported using a configuration file, but that vector...
Heap overflow
Heap-based buffer overflow in the openmanfile function in callbacks.c in gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, which is not properly handled during utf8 conversion. NOTE: another overflow was reported using a configuration file, but that vector...
CVE-2008-3971
Heap-based buffer overflow in the openmanfile function in callbacks.c in gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, which is not properly handled during utf8 conversion. NOTE: another overflow was reported using a configuration file, but that vector...
CVE-2008-3971
Heap-based buffer overflow in the open_man_file function in callbacks.c of gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, not properly handled during UTF-8 conversion. A second overflow was reported via a configuration file, but that vector does not cross...
CVE-2008-3971
Heap-based buffer overflow in the openmanfile function in callbacks.c in gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, which is not properly handled during utf8 conversion. NOTE: another overflow was reported using a configuration file, but that vector...
CVE-2008-3971
Heap-based buffer overflow in the openmanfile function in callbacks.c in gmanedit 0.4.1 allows remote attackers to execute arbitrary code via a crafted man page, which is not properly handled during utf8 conversion. NOTE: another overflow was reported using a configuration file, but that vector...