CVE-2008-1688

Currently unrated

Key Information:

Vendor: Gnu
Status: M4
Vendor: CVE Published:; 9 April 2008

Summary

Unspecified vulnerability in GNU m4 before 1.4.11 might allow context-dependent attackers to execute arbitrary code, related to improper handling of filenames specified with the -F option. NOTE: it is not clear when this issue crosses privilege boundaries.

References

http://www.vupen.com/english/advisories/2008/1151/references

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/41704

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/28688

vdb-entryx_refsource_BID

EPSS Score

1% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 9, 2008
Vulnerability Reserved
Apr 6, 2008