Oval Definition:	oval:org.mitre.oval:tst:38706
Comment: cscope is earlier than 0:15.5-15.1.el5_3.1 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14970 State: oval:org.mitre.oval:ste:11261 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:9633 V Multiple buffer overflows in Cscope before 15.7a allow remote attackers to execute arbitrary code via long strings in input such as (1) source-code tokens and (2) pathnames, related to integer overflows in some cases. NOTE: this issue exists because of an incomplete fix for CVE-2004-2541. 2013-04-29 oval:org.mitre.oval:def:10069 V Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target. 2013-04-29
BACK