CVE-2004-0548 in Aspellinfo

Summary

Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

06/09/2004

Disclosure

08/06/2004

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-121 (Confirmed)

Exploit

Download

CVSS

9.3

EPSS

0.00184

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0548
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0548
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0548/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!