Vulnerability Database

290,476

Total vulnerabilities in the database

CVE-2008-4555

Stack-based buffer overflow in the push_subg function in parser.y (lib/graph/parser.c) in Graphviz 2.20.2, and possibly earlier versions, allows user-assisted remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a DOT file with a large number of Agraph_t elements.

  • Published: Oct 14, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-4555
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 8.5
  • AV:N/AC:M/Au:S/C:C/I:C/A:C

CWEs:

Software From Fixed in
graphviz / graphviz 2.12 2.12.x
graphviz / graphviz 1.10_2003-09-15_0415_1 1.10_2003-09-15_0415_1.x
graphviz / graphviz 2.14 2.14.x
graphviz / graphviz 1.8.9.1 1.8.9.1.x
graphviz / graphviz 1.7.5_0.3 1.7.5_0.3.x
graphviz / graphviz 1.7.5_0.1 1.7.5_0.1.x
graphviz / graphviz 2.2 2.2.x
graphviz / graphviz 1.7.5.1 1.7.5.1.x
graphviz / graphviz 1.14.1 1.14.1.x
graphviz / graphviz 2.18 2.18.x
graphviz / graphviz 2.2.2 2.2.2.x
graphviz / graphviz 2.10 2.10.x
graphviz / graphviz 1.8.5.2 1.8.5.2.x
graphviz / graphviz 1.7.5.7 1.7.5.7.x
graphviz / graphviz 2.8 2.8.x
graphviz / graphviz 2.20.1 2.20.1.x
graphviz / graphviz 1.16.1 1.16.1.x
graphviz / graphviz 1.5.2 1.5.2.x
graphviz / graphviz 1.7.5.4 1.7.5.4.x
graphviz / graphviz 2.4 2.4.x
graphviz / graphviz 1.7.16.1 1.7.16.1.x
graphviz / graphviz 1.7.5.2 1.7.5.2.x
graphviz / graphviz 1.5.3 1.5.3.x
graphviz / graphviz 1.8.5.1 1.8.5.1.x
graphviz / graphviz 1.12.2 1.12.2.x
graphviz / graphviz 2.2.1 2.2.1.x
graphviz / graphviz 1.7.5.5 1.7.5.5.x
graphviz / graphviz 1.12.3 1.12.3.x
graphviz / graphviz 1.12.1 1.12.1.x
graphviz / graphviz 2.2.1.1 2.2.1.1.x
graphviz / graphviz 1.10_2003-09-15_0415_2 1.10_2003-09-15_0415_2.x
graphviz / graphviz 2.16 2.16.x
graphviz / graphviz 2.20.0 2.20.0.x
graphviz / graphviz 1.5.1 1.5.1.x
graphviz / graphviz 1.7.16.2 1.7.16.2.x
graphviz / graphviz - 2.20.2.x
graphviz / graphviz 1.7.5_0.2 1.7.5_0.2.x
graphviz / graphviz 1.7.5.3 1.7.5.3.x
graphviz / graphviz 2.6 2.6.x
graphviz / graphviz 1.7.5.6 1.7.5.6.x