Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2008-3908 | First vendor Publication | 2008-09-04 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 10 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Multiple buffer overflows in Princeton WordNet (wn) 3.0 allow context-dependent attackers to execute arbitrary code via (1) a long argument on the command line; a long (2) WNSEARCHDIR, (3) WNHOME, or (4) WNDBVERSION environment variable; or (5) a user-supplied dictionary (aka data file). NOTE: since WordNet itself does not run with special privileges, this issue only crosses privilege boundaries when WordNet is invoked as a third party component. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3908 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:18628 | |||
| Oval ID: | oval:org.mitre.oval:def:18628 | ||
| Title: | DSA-1634-1 wordnet - arbitrary code execution | ||
| Description: | Rob Holland discovered several programming errors in WordNet, an electronic lexical database of the English language. These flaws could allow arbitrary code execution when used with untrusted input, for example when WordNet is in use as a back end for a web application. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1634-1 CVE-2008-2149 CVE-2008-3908 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 4.0 | Product(s): | wordnet |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:7971 | |||
| Oval ID: | oval:org.mitre.oval:def:7971 | ||
| Title: | DSA-1634 wordnet -- stack and heap overflows | ||
| Description: | Rob Holland discovered several programming errors in WordNet, an electronic lexical database of the English language. These flaws could allow arbitrary code execution when used with untrusted input, for example when WordNet is in use as a back end for a web application. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1634 CVE-2008-2149 CVE-2008-3908 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 4.0 | Product(s): | wordnet |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 1 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-04-09 | Name : Mandriva Update for wordnet MDVSA-2008:182-1 (wordnet) File : nvt/gb_mandriva_MDVSA_2008_182_1.nasl |
| 2008-10-09 | Name : Gentoo Security Advisory GLSA 200810-01 (wordnet) File : nvt/glsa_200810_01.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 48479 | Princeton WordNet (wn) morph.c Command Line Local Overflow A local overflow exists in WordNet. WordNet fails to handle a boundary error in morph.c resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
| 48478 | Princeton WordNet (wn) search.c Multiple Local Overflows A local overflow exists in WordNet. WordNet fails to handle multiple boundary errors in search.c resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
| 48477 | Princeton WordNet (wn) morph.c Environment Variable Handling Local Overflow A local overflow exists in WordNet. WordNet fails to handle boundary errors within the "do_init()" function in lib/morph.c accessible via specially crafted "WNSEARCHDIR" or "WNHOME" environment variables resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
| 48476 | Princeton WordNet (wn) wnutil.c Environment Variable Handling Local Overflow A buffer overflow exists in WordNet. WordNet fails to handle a boundary in wnulitc. specifically called via the WNDBVERSION environmental variable resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
| 48475 | Princeton WordNet (wn) binsrch.c Data File Handling Local Overflow A local overflow exists in WordNet. WordNet experiences boundary errors in "bin_search()" and "bin_search_key()" functions in binsrch.c resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code executio resulting in a loss of integrity. |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2009-04-23 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2008-182.nasl - Type : ACT_GATHER_INFO |
| 2008-10-08 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200810-01.nasl - Type : ACT_GATHER_INFO |
| 2008-09-05 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1634.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 23:13:35 |
|
| 2024-11-28 12:16:25 |
|
| 2021-05-04 12:08:00 |
|
| 2021-04-22 01:08:21 |
|
| 2020-05-23 00:22:12 |
|
| 2018-10-12 00:20:27 |
|
| 2017-08-08 09:24:21 |
|
| 2016-04-26 17:47:30 |
|
| 2014-02-17 10:46:21 |
|
| 2013-05-11 00:25:00 |
|
