CVE-2004-0548

N/A Unknown

Published: August 06, 2004 Modified: April 16, 2026

Description

Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the (1) "c" compress option or (2) "d" decompress option.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=bugtraq&m=108675120224531&w=2

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200406-14.xml

Source: cve@mitre.org

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/10497

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=108675120224531&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.gentoo.org/security/en/glsa/glsa-200406-14.xml

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/10497

Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.2%

40th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

gentoo gnu