Computer Security
[EN] securityvulns.ru no-pyccku


yelp format string vulnerability
Published:21.08.2008
Source:
SecurityVulns ID:9236
Type:remote
Threat Level:
5/10
Description:Format string vulnerability via URI.
Affected:YELP : yelp 2.23
CVE:CVE-2008-3533 (Format string vulnerability in the window_error function in yelp-window.c in yelp in Gnome after 2.19.90 and before 2.24 allows remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command line, as demonstrated by use of yelp within (1) man or (2) ghelp URI handlers in Firefox, Evolution, and unspecified other programs.)
Original documentdocumentMANDRIVA, [ MDVSA-2008:175 ] yelp (21.08.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod