Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Gentoo Local Security Checks >> [GLSA-200501-10] Vilistextum: Buffer overflow vulnerability


Vulnerability Assessment Details

[GLSA-200501-10] Vilistextum: Buffer overflow vulnerability

Vulnerability Assessment Summary
Vilistextum: Buffer overflow vulnerability

Detailed Explanation for this Vulnerability Assessment
The remote host is affected by the vulnerability described in GLSA-200501-10
(Vilistextum: Buffer overflow vulnerability)


Ariel Berkman discovered that Vilistextum unsafely reads data into
an array without checking the length. This code vulnerability may lead
to a buffer overflow.

Impact

A remote attacker could craft a malicious webpage which, when
converted, would result in the execution of arbitrary code with the
rights of the user running Vilistextum.

Workaround

There is no known workaround at this time.

References:
http://tigger.uic.edu/~jlongs2/holes/vilistextum.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1299


Solution:
All Vilistextum users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-text/vilistextum-2.6.7"


Network Security Threat Level: Medium


Networks Security ID:

Vulnerability Assessment Copyright: (C) 2005 Michel Arboi

Cables, Connectors


Dell PowerEdge R640 NVMe Server 2.10Ghz 8-Core 96GB 10x 1.6TB NVMe SSD HBA330 picture

Dell PowerEdge R640 NVMe Server 2.10Ghz 8-Core 96GB 10x 1.6TB NVMe SSD HBA330

$3133.65



Dell Desktop Computer 16GB RAM 512GB SSD Intel Core i5 8th Gen. Windows 11 Pro picture

Dell Desktop Computer 16GB RAM 512GB SSD Intel Core i5 8th Gen. Windows 11 Pro

$250.00



HP Z820 8-Core 2.60GHz E5-2670 128GB RAM No HDD No OS picture

HP Z820 8-Core 2.60GHz E5-2670 128GB RAM No HDD No OS

$214.82



HP RGB G3 Desktop Computer i7 32GB 2TB SSD 2TB HDD New 24

HP RGB G3 Desktop Computer i7 32GB 2TB SSD 2TB HDD New 24" LED Built-in Wifi Pro

$394.99



Dell Precision 3430 Desktop 3.00GHz Intel Core i5-8500 8GB DDR4 RAM NO HDD picture

Dell Precision 3430 Desktop 3.00GHz Intel Core i5-8500 8GB DDR4 RAM NO HDD

$100.00



HP EliteDesk 800 G3 SFF Intel Core i5-6500 @3.20GHz 8GB RAM Desktop PC picture

HP EliteDesk 800 G3 SFF Intel Core i5-6500 @3.20GHz 8GB RAM Desktop PC

$69.99



Dell Optiplex 7070 Tower i7-9700 8-Core/16Gb/512Gb Nvme/Radeon RX-550/Win 11 C7 picture

Dell Optiplex 7070 Tower i7-9700 8-Core/16Gb/512Gb Nvme/Radeon RX-550/Win 11 C7

$299.00



Intel - Core i7-13700K 13th Gen 16 cores 8 P-cores + 8 E-cores 30M Cache, 3.4... picture

Intel - Core i7-13700K 13th Gen 16 cores 8 P-cores + 8 E-cores 30M Cache, 3.4...

$364.99



HP Custom Tower Computer- Up to 32GB RAM 1TB SSD Quad Core AMD Windows PC picture

HP Custom Tower Computer- Up to 32GB RAM 1TB SSD Quad Core AMD Windows PC

$224.99



SGIN 15.6

SGIN 15.6" Laptop 8GB RAM 256GB SSD Intel Celeron Quad-Core 2.90 GHz HD 1080P

$189.00



Discussions

No Discussions have been posted on this vulnerability.