|
|
CVE Reference: CVE-2006-4262 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-4262 |
|
|
Description: Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple vectors including (1) a long pathname that is not properly handled during file list parsing, (2) long pathnames that result from path variable expansion such as tilde expansion for the HOME environment variable, and (3) a long -f (aka reffile) command line argument. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/28546 http://xforce.iss.net/xforce/xfdb/28545 SAID Secunia Advisory: SA22239 Secunia Advisory: SA21601 Secunia Advisory: SA22515 REDHAT http://www.redhat.com/support/errata/RHSA-2009-1101.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9661 OSVDB 28136 28135 GENTOO http://security.gentoo.org/glsa/glsa-200610-08.xml DEBIAN http://www.debian.org/security/2006/dsa-1186 CONFIRM http://sourceforge.net/mailarchive/forum.php?thread_id=30266760&forum_id=33500 http://sourceforge.net/mailarchive/forum.php?thread_id=30266761&forum_id=33500 BID 19686 19687 |
|
| Return to the previous page. |
