Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200610-08] Cscope: Multiple buffer overflows Vulnerability Scan
Vulnerability Scan Summary
Cscope: Multiple buffer overflows
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200610-08
(Cscope: Multiple buffer overflows)
Unchecked use of strcpy() and *scanf() leads to several buffer
A user could be enticed to open a carefully crafted file which would
allow the attacker to execute arbitrary code with the permissions of
the user running Cscope.
There is no known workaround at this time.
All Cscope users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-util/cscope-15.5.20060927"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.