Lucene search
MitreCVE-2004-0548HistoryAug 06, 2004 - 4:00 a.m.
CVE-2004-0548
2004-08-0604:00:00
mitre
web.nvd.nist.gov
52
cve-2004-0548
aspell
buffer overflow
compress.c
word-list-compress
security vulnerability
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0
Percentile
0.4%
Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) “c” compress option or (2) “d” decompress option.
Affected configurations
Node
gnuaspellMatch0.50.5
Node
gentoolinuxMatch1.4
Related
openvas
openvas
Gentoo Security Advisory GLSA 200406-14 (aspell)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200406-14 (aspell)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2004-0548
2004-06-11 04:00:00
exploitdb
exploitdb
Aspell (word-list-compress) - Command Line Stack Overflow
2004-12-01 00:00:00
debiancve
debiancve
CVE-2004-0548
2004-08-06 04:00:00
nessus
nessus
Mandrake Linux Security Advisory : aspell (MDKSA-2004:153)
2004-12-21 00:00:00
GLSA-200406-14 : aspell: Buffer overflow in word-list-compress
2004-08-30 00:00:00
nvd
nvd
CVE-2004-0548
2004-08-06 04:00:00
gentoo
gentoo
aspell: Buffer overflow in word-list-compress
2004-06-17 00:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0
Percentile
0.4%
Related for CVE-2004-0548