MidnightBSD

Advisories for cscope

CVE-2004-0996 LOW

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
debian debian_linux 3.0
sco unixware 7.1.4
sco unixware 7.1.3
cscope cscope 13.0
cscope cscope 15.4
gentoo linux *
cscope cscope 15.3
cscope cscope 15.1
sco unixware 7.1.1
cscope cscope 15.5
CVE-2004-2541 MEDIUM

Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
cscope cscope 15.5