Back to search
CVE-2009-0148
Published: May 5, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple buffer overflows in Cscope before 15.7a allow remote attackers to execute arbitrary code via long strings in input such as (1) source-code tokens and (2) pathnames, related to integer overflows in some cases. NOTE: this issue exists because of an incomplete fix for CVE-2004-2541.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20090506 Re: Old cscope buffer overflow
mailing-list
x_refsource_MLIST
35462
third-party-advisory
x_refsource_SECUNIA
http://support.apple.com/kb/HT3549
x_refsource_CONFIRM
RHSA-2009:1101
vendor-advisory
x_refsource_REDHAT
35074
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2009-05-12
vendor-advisory
x_refsource_APPLE
ADV-2009-1238
vdb-entry
x_refsource_VUPEN
35214
third-party-advisory
x_refsource_SECUNIA
RHSA-2009:1102
vendor-advisory
x_refsource_REDHAT
GLSA-200905-02
vendor-advisory
x_refsource_GENTOO
TA09-133A
third-party-advisory
x_refsource_CERT
35213
third-party-advisory
x_refsource_SECUNIA
ADV-2009-1297
vdb-entry
x_refsource_VUPEN
34805
vdb-entry
x_refsource_BID
http://sourceforge.net/forum/forum.php?forum_id=947983
x_refsource_CONFIRM
1022218
vdb-entry
x_refsource_SECTRACK
DSA-1806
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:9633
vdb-entry
signature
x_refsource_OVAL
34978
third-party-advisory
x_refsource_SECUNIA
http://sourceforge.net/project/shownotes.php?group_id=4664&release_id=679527
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=490667
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now