CVE Reference: CVE-2013-4385

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2013-4385

Description:
Buffer overflow in the "read-string!" procedure in the "extras" unit in CHICKEN stable before 4.8.0.5 and development snapshots before 4.8.3 allows remote attackers to cause a denial of service (memory corruption and application crash) and possibly execute arbitrary code via a "#f" value in the NUM argument.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA55009

MLIST
  http://lists.gnu.org/archive/html/chicken-announce/2013-10/msg00000.html
  http://lists.nongnu.org/archive/html/chicken-announce/2013-09/msg00001.html
  http://lists.nongnu.org/archive/html/chicken-announce/2013-09/msg00000.html


Return to the previous page.