CVE-2004-0548

Published: Aug 6, 2004Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.

Affected (2)

Products: Gnu: Aspell · Gentoo: Linux

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Gnu Aspell	Version 0.50.5

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Gentoo Linux	Version 1.4

References (8)

http://marc.info/?l=bugtraq&m=108675120224531&w=2

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200406-14.xml

Source: cve@mitre.org

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/10497

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=108675120224531&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.gentoo.org/security/en/glsa/glsa-200406-14.xml

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/10497

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.