Back to search
CVE-2008-2080
Published: May 6, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the Read32s_64 function in src/lib/cdfread64.c in the NASA Goddard Space Flight Center Common Data Format (CDF) library before 3.2.1 allows context-dependent attackers to execute arbitrary code via a .cdf file with crafted length tags.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://cdf.gsfc.nasa.gov/CDF32_buffer_overflow.html
x_refsource_CONFIRM
http://www.coresecurity.com/?action=item&id=2260
x_refsource_MISC
cdf-read32s64-bo(42219)
vdb-entry
x_refsource_XF
ADV-2008-1440
vdb-entry
x_refsource_VUPEN
1019965
vdb-entry
x_refsource_SECTRACK
GLSA-200805-14
vendor-advisory
x_refsource_GENTOO
29045
vdb-entry
x_refsource_BID
30053
third-party-advisory
x_refsource_SECUNIA
30169
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now