FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2008-4306

This CVE name corresponds to:

Entered Topic
2008-11-18 enscript -- arbitrary code execution vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2008-4306 at cve.mitre.org

Details

Type Candidate
Name CVE-2008-4306
Phase Assigned(20080929)

Description

Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence.

References

Source Reference
BUGTRAQ 20081117 rPSA-2008-0321-1 enscript
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2008-504.htm
CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0321
CONFIRM https://issues.rpath.com/browse/RPL-2887
DEBIAN DSA-1670
FEDORA FEDORA-2008-9351
FEDORA FEDORA-2008-9372
GENTOO GLSA-200812-02
MANDRIVA MDVSA-2008:243
REDHAT RHSA-2008:1016
REDHAT RHSA-2008:1021
SUSE SUSE-SR:2008:024
UBUNTU USN-660-1
OSVDB 49569
OVAL oval:org.mitre.oval:def:10718
SECUNIA 32530
SECUNIA 33109
SECUNIA 32970
SECUNIA 32521
SECUNIA 32753
SECUNIA 32854

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.