Back to search
CVE-2008-1688
Published: Apr 9, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Unspecified vulnerability in GNU m4 before 1.4.11 might allow context-dependent attackers to execute arbitrary code, related to improper handling of filenames specified with the -F option. NOTE: it is not clear when this issue crosses privilege boundaries.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2008-1151
vdb-entry
x_refsource_VUPEN
gnu-m4-producefrozenstate-format-string(41704)
vdb-entry
x_refsource_XF
28688
vdb-entry
x_refsource_BID
44272
vdb-entry
x_refsource_OSVDB
29671
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20080406 Re: Security fixes in m4-1.4.11
mailing-list
x_refsource_MLIST
29729
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20080406 Security fixes in m4-1.4.11
mailing-list
x_refsource_MLIST
SSA:2008-098-01
vendor-advisory
x_refsource_SLACKWARE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now