Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2541

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2004-2541
Last Modified 07 Mar 2011 09:19:00
Published 31 Dec 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2004-2541

Summary

Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.

Vulnerable Systems

Application

  • Cscope 15.5


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=490667

VUPEN - ADV-2007-2732

BID - 25159

BID - 18050

REDHAT - RHSA-2009:1102

REDHAT - RHSA-2009:1101

OSVDB - 11920

GENTOO - GLSA-200606-10

DEBIAN - DSA-1064

MISC - http://sourceforge.net/tracker/index.php?func=detail&aid=1064875&group_id=4664&atid=104664

SECUNIA - 35462

SECUNIA - 26235

SECUNIA - 20564

SECUNIA - 20191

SECUNIA - 13237

APPLE - APPLE-SA-2007-07-31

CONFIRM - http://docs.info.apple.com/article.html?artnum=306172

Related Patches

Apple 2007-07-31 Security Update 2007-007 (10.4.10 Server PPC) (Rev 2)

Apple 2007-07-31 Security Update 2007-007 (10.4.10 PPC) (Rev 2)

Apple 2007-07-31 Security Update 2007-007 (10.4.10 Server Universal) (Rev 2)

Apple 2007-07-31 Security Update 2007-007 (10.4.10 Universal) (Rev 2)

Red Hat 2009:1102-01 RHSA Moderate: cscope security update for RHEL 5 x86


Last Updated: 27 May 2016 10:39:31