Lucene search
Ubuntu.comUB:CVE-2008-3533HistoryAug 18, 2008 - 12:00 a.m.
CVE-2008-3533
2008-08-1800:00:00
ubuntu.com
ubuntu.com
11
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.078
Percentile
94.3%
Format string vulnerability in the window_error function in yelp-window.c
in yelp in Gnome after 2.19.90 and before 2.24 allows remote attackers to
execute arbitrary code via format string specifiers in an invalid URI on
the command line, as demonstrated by use of yelp within (1) man or (2)
ghelp URI handlers in Firefox, Evolution, and unspecified other programs.
Bugs
Related
openvas
openvas
Fedora Update for yelp FEDORA-2008-7293
2009-02-17 00:00:00
Mandriva Update for yelp MDVSA-2008:175 (yelp)
2009-04-09 00:00:00
Fedora Update for yelp FEDORA-2008-7293
2009-02-17 00:00:00
nessus
nessus
Ubuntu 7.10 / 8.04 LTS : yelp vulnerability (USN-638-1)
2008-08-28 00:00:00
openSUSE Security Update : yelp (yelp-271)
2009-07-21 00:00:00
Fedora 8 : yelp-2.20.0-12.fc8 (2008-7293)
2008-09-10 00:00:00
securityvulns
securityvulns
[ MDVSA-2008:175 ] yelp
2008-08-21 00:00:00
yelp format string vulnerability
2008-08-21 00:00:00
cve
cve
CVE-2008-3533
2008-08-18 17:41:00
cvelist
cvelist
CVE-2008-3533
2008-08-18 17:15:00
debiancve
debiancve
CVE-2008-3533
2008-08-18 17:41:00
ubuntu
ubuntu
Yelp vulnerability
2008-08-27 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: yelp-2.20.0-12.fc8
2008-09-10 06:50:31
exploitdb
exploitdb
Yelp 2.23.1 - Invalid URI Format String
2008-08-13 00:00:00
gentoo
gentoo
yelp: User-assisted execution of arbitrary code
2008-09-04 00:00:00
prion
prion
Format string
2008-08-18 17:41:00
nvd
nvd
CVE-2008-3533
2008-08-18 17:41:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.078
Percentile
94.3%
Related for UB:CVE-2008-3533