Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple vectors including (1) a long pathname that is not properly handled during file list parsing, (2) long pathnames that result from path variable expansion such as tilde expansion for the HOME environment variable, and (3) a long -f (aka reffile) command line argument.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cscope 'cscope.lists' 多个缓冲区溢出漏洞
Vulnerability Description
cscope 15.5及早期版本中存在多个缓冲区溢出漏洞,用户辅助攻击者可借助以下多个向量触发拒绝服务攻击(崩溃),并可能执行任意代码:(1) 文件列表解析过程中没有正确处理的超长路径名,(2) 由路径变量扩展,例如HOME环境变量的~(波浪符)扩展造成的超长路径名,以及(3) 超长-f(也称reffile)命令行自变量。
CVSS Information
N/A
Vulnerability Type
N/A