CVE-2008-0100
published 2008-01-08CVE-2008-0100: Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
7.56%
93.8th percentile
Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via a long string in a .WRL file.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | whitedune | < whitedune 0.28.13-1 (bookworm) | whitedune 0.28.13-1 (bookworm) |
| white_dune | white_dune | <= 0.29beta791 | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2v3w-6hfw-3w66: Stack-based buffer overflow in the Scene::errorf function in Scene
ghsa_unreviewed·2022-05-01
CVE-2008-0100 [HIGH] CWE-119 GHSA-2v3w-6hfw-3w66: Stack-based buffer overflow in the Scene::errorf function in Scene
Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via a long string in a .WRL file.
OSV
CVE-2008-0100: Stack-based buffer overflow in the Scene::errorf function in Scene
osv·2008-01-08·CVSS 7.5
CVE-2008-0100 [HIGH] CVE-2008-0100: Stack-based buffer overflow in the Scene::errorf function in Scene
Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via a long string in a .WRL file.
Debian
CVE-2008-0100: whitedune - Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_...
vendor_debian·2008·CVSS 7.5
CVE-2008-0100 [HIGH] CVE-2008-0100: whitedune - Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_...
Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via a long string in a .WRL file.
Scope: local
bookworm: resolved (fixed in 0.28.13-1)
bullseye: resolved (fixed in 0.28.13-1)
No detection rules found.
Bugzilla
CVE-2009-4026 CVE-2009-4027 kernel: mac80211: fix spurious delBA handling
bugzilla·2009-11-25·CVSS 7.8
CVE-2009-4026 [HIGH] CVE-2009-4026 CVE-2009-4027 kernel: mac80211: fix spurious delBA handling
CVE-2009-4026 CVE-2009-4027 kernel: mac80211: fix spurious delBA handling
Lennert Buytenhek noticed that delBA handling in mac80211 was broken and has remotely triggerable problems, some of which are due to some code shuffling I did that ended up changing the order in which things were done -- this was
commit d75636ef9c1af224f1097941879d5a8db7cd04e5
Author: Johannes Berg
Date: Tue Feb 10 21:25:53 2009 +0100
mac80211: RX aggregation: clean up stop session
and other parts were already present in the original
commit d92684e66091c0f0101819619b315b4bb8b5bcc5
Author: Ron Rindjunsky
Date: Mon Jan 28 14:07:22 2008 +0200
mac80211: A-MPDU Tx add delBA from recipient support
The first problem is that I moved a BUG_ON before various checks -- thereby making it possible to hit. As the comment in
Bugzilla
CVE-2008-1996 licq: DoS via large number of connections
bugzilla·2008-05-05·CVSS 5.0
CVE-2008-1996 [MEDIUM] CVE-2008-1996 licq: DoS via large number of connections
CVE-2008-1996 licq: DoS via large number of connections
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-1996 to the following vulnerability:
licq before 1.3.6 allows remote attackers to cause a denial of service (file-descriptor exhaustion and application crash) via a large number of connections.
Refences:
http://www.licq.org/ticket/1623
http://www.licq.org/changeset/6146
http://www.securityfocus.com/archive/1/490563
http://www.securityfocus.com/archive/1/490711
http://www.securityfocus.com/bid/28679
http://seclists.org/bugtraq/2008/Apr/0100.html
Discussion:
licq-1.3.4-9.fc8 has been submitted as an update for Fedora 8
---
licq-1.3.5-2.fc9 has been submitted as an update for Fedora 9
---
licq-1.3.4-8.fc7 has been submitted as an update for Fedora 7
---
licq-
Bugzilla
CVE-2008-1419 vorbis: zero-dim codebooks can cause crash, infinite loop or heap overflow
bugzilla·2008-04-04·CVSS 4.3
CVE-2008-1419 [MEDIUM] CVE-2008-1419 vorbis: zero-dim codebooks can cause crash, infinite loop or heap overflow
CVE-2008-1419 vorbis: zero-dim codebooks can cause crash, infinite loop or heap overflow
Will Drewry of the Google Security Team reported an issue in OGG Vorbis library,
that can cause crash of the application using vorbis library, trigger an
infinite loop, or cause an integer overflow leading to possible heap overflow.
Problem is caused by codebooks with codebook.dim == 0.
Discussion:
Upstream patch:
$ svn log -r 14602 http://svn.xiph.org/trunk/vorbis/
r14602 | xiphmont | 2008-03-18 19:12:52 +0100 (Tue, 18 Mar 2008) | 2 lines
correctly handle the nonsensical codebook.dim==0 case
$ svn diff -c 14602 http://svn.xiph.org/trunk/vorbis/lib/
Index: codebook.c
--- codebook.c (revision 14601)
+++ codebook.c (revision 14602)
@@ -225,7 +225,7 @@
int quantvals=0;
switch(s->maptype){
case 1:
http://aluigi.altervista.org/adv/whitedunboffs-adv.txthttp://secunia.com/advisories/28287http://securityreason.com/securityalert/3516http://vrml.cip.ica.uni-stuttgart.de/dune/news.htmlhttp://www.securityfocus.com/archive/1/485724/100/0/threadedhttp://www.securityfocus.com/bid/27102https://exchange.xforce.ibmcloud.com/vulnerabilities/39385http://aluigi.altervista.org/adv/whitedunboffs-adv.txthttp://secunia.com/advisories/28287http://securityreason.com/securityalert/3516http://vrml.cip.ica.uni-stuttgart.de/dune/news.htmlhttp://www.securityfocus.com/archive/1/485724/100/0/threadedhttp://www.securityfocus.com/bid/27102https://exchange.xforce.ibmcloud.com/vulnerabilities/39385
2008-01-08
Published