Vulnerability Database

289,689

Total vulnerabilities in the database

CVE-2004-0548

Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.

  • Published: Aug 6, 2004
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-0548
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
gnu / aspell 0.50.5 0.50.5.x
gentoo / linux 1.4 1.4.x