CVE

Id
34025  
CVE No.
CVE-2008-3908  
Status
Candidate  
Description
Multiple buffer overflows in Princeton WordNet (wn) 3.0 allow context-dependent attackers to execute arbitrary code via (1) a long argument on the command line; a long (2) WNSEARCHDIR, (3) WNHOME, or (4) WNDBVERSION environment variable; or (5) a user-supplied dictionary (aka data file). NOTE: since WordNet itself does not run with special privileges, this issue only crosses privilege boundaries when WordNet is invoked as a third party component.  
Phase
Assigned (20080904)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
371567 34025 CVE-2008-3908 BUGTRAQ:20080901 [oCERT-2008-014] WordNet stack and heap overflows  View
371568 34025 CVE-2008-3908 URL:http://www.securityfocus.com/archive/1/archive/1/495883/100/0/threaded  View
371569 34025 CVE-2008-3908 MISC:http://www.ocert.org/analysis/2008-014/analysis.txt  View
371570 34025 CVE-2008-3908 MISC:http://www.ocert.org/advisories/ocert-2008-014.html  View
371571 34025 CVE-2008-3908 MISC:http://www.ocert.org/analysis/2008-014/wordnet.patch  View
371572 34025 CVE-2008-3908 GENTOO:GLSA-200810-01  View
371573 34025 CVE-2008-3908 URL:http://www.gentoo.org/security/en/glsa/glsa-200810-01.xml  View
371574 34025 CVE-2008-3908 BID:30958  View
371575 34025 CVE-2008-3908 URL:http://www.securityfocus.com/bid/30958  View
371576 34025 CVE-2008-3908 SECUNIA:32184  View
371577 34025 CVE-2008-3908 URL:http://secunia.com/advisories/32184  View
371578 34025 CVE-2008-3908 SREASON:4217  View
371579 34025 CVE-2008-3908 URL:http://securityreason.com/securityalert/4217  View
371580 34025 CVE-2008-3908 XF:wordnet-binsrch-search-bo(44851)  View
371581 34025 CVE-2008-3908 URL:http://xforce.iss.net/xforce/xfdb/44851  View
371582 34025 CVE-2008-3908 XF:wordnet-morph-search-bo(44848)  View
371583 34025 CVE-2008-3908 URL:http://xforce.iss.net/xforce/xfdb/44848  View
371584 34025 CVE-2008-3908 XF:wordnet-morphinit-bo(44849)  View
371585 34025 CVE-2008-3908 URL:http://xforce.iss.net/xforce/xfdb/44849  View
371586 34025 CVE-2008-3908 XF:wordnet-wninit-bo(44850)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
46499 JVNDB-2008-001809 ClamAV の chm-libclamav におけるサービス運用妨害 (DoS) の脆弱性 ClamAV の chm-libclamav には、メモリ不足状態に関連した問題があり、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2008-3912 34025 5 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001809.html  View