NVD

Id
4865  
Name
CVE-2008-5078  
Description
Multiple buffer overflows in the (1) recognize_eps_file function (src/psgen.c) and (2) tilde_subst function (src/util.c) in GNU enscript 1.6.1, and possibly earlier, might allow remote attackers to execute arbitrary code via an epsf escape sequence with a long filename.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-03  
Published
2008-12-19  
Modified Date
2010-08-21  
Seq
2008-5078  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
30620 4865 CVE-2008-5078 SUSE-SR:2009:005  View
30621 4865 CVE-2008-5078 oval:org.mitre.oval:def:11807  View
30622 4865 CVE-2008-5078 http://support.avaya.com/elmodocs2/security/ASA-2008-504.htm  View
30623 4865 CVE-2008-5078 RHSA-2008:1021  View
30624 4865 CVE-2008-5078 1021401  View
30625 4865 CVE-2008-5078 enscript-recognize-tilde-bo(47680)  View
30626 4865 CVE-2008-5078 https://bugzilla.redhat.com/show_bug.cgi?id=473958  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
46913 JVNDB-2008-002223 GNU Enscript の recognize_eps_file 関数および tilde_subst 関数におけるバッファオーバーフローの脆弱性 GNU enscript の recognize_eps_file 関数および tilde_subst 関数には、epsf エスケープシーケンの処理に不備があるため、バッファオーバーフローの脆弱性が存在します。 CVE-2008-5078 35191 CVE-2008-5078 4865 6.8 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002223.html 2008-12-19 2009-01-29 View