what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 4 of 4 RSS Feed

CVE-2008-2149

Status Candidate

Overview

Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end.

Related Files

Gentoo Linux Security Advisory 200810-1
Posted Oct 8, 2008
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200810-01 - Multiple vulnerabilities were found in WordNet, possibly allowing for the execution of arbitrary code. Versions less than 3.0-r2 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2008-2149, CVE-2008-3908
SHA-256 | a7931566306c70868cdc7494c2a4ffe530baecd1b02dc4c20cb526648c364fb4
Debian Linux Security Advisory 1634-2
Posted Sep 20, 2008
Authored by Debian | Site debian.org

Debian Security Advisory 1634-2 - Rob Holland discovered several programming errors in WordNet, an electronic lexical database of the English language. These flaws could allow arbitrary code execution when used with untrusted input, for example when WordNet is in use as a back end for a web application. A regression was discovered in the original patch addressing this issue for WordNet, which this update fixes.

tags | advisory, web, arbitrary, code execution
systems | linux, debian
advisories | CVE-2008-2149
SHA-256 | 0b1a015d9c2dbf861498f679ae61a545d8164bf3135bf3645c81408026ffc049
Mandriva Linux Security Advisory 2008-182
Posted Sep 16, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Rob Holland found several programming errors in WordNet which could lead to the execution or arbitrary code when used with untrusted input. The previous patch had a typo that caused incorrect behaviour in WordNet. This update uses an update patch that corrects the issue and also notes the additional assigned CVE name for these issues.

tags | advisory, arbitrary
systems | linux, mandriva
advisories | CVE-2008-2149, CVE-2008-3908
SHA-256 | 74e06ba98550a678c3fb64f9a348550975806181cd83d7d500db56731a314bc7
Mandriva Linux Security Advisory 2008-182
Posted Sep 3, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Rob Holland found several programming errors in WordNet which could lead to the execution or arbitrary code when used with untrusted input. The updated packages have been patched to prevent these issues.

tags | advisory, arbitrary
systems | linux, mandriva
advisories | CVE-2008-2149
SHA-256 | 11ab96f9d53f08818b66ce21c11dbd8db246d6cbc6451a0422a398a005157de2
Page 1 of 1
Back1Next

File Archive:

May 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    44 Files
  • 2
    May 2nd
    5 Files
  • 3
    May 3rd
    11 Files
  • 4
    May 4th
    0 Files
  • 5
    May 5th
    0 Files
  • 6
    May 6th
    28 Files
  • 7
    May 7th
    3 Files
  • 8
    May 8th
    4 Files
  • 9
    May 9th
    54 Files
  • 10
    May 10th
    12 Files
  • 11
    May 11th
    0 Files
  • 12
    May 12th
    0 Files
  • 13
    May 13th
    17 Files
  • 14
    May 14th
    11 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    13 Files
  • 17
    May 17th
    22 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    0 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close