Published: 04/05/2005 Updated: 11/10/2017

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in the ieee_putascii function for nasm 0.98 and previous versions allows malicious users to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2004-1287.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat enterprise linux 4.0
redhat enterprise linux 2.1
redhat enterprise linux 3.0
redhat enterprise linux desktop 4.0
redhat linux advanced workstation 2.1
redhat enterprise linux desktop 3.0

Synopsis nasm security update Type/Severity Security Advisory: Low Topic An updated nasm package that fixes multiple security issues is now availableThis update has been rated as having low security impact by the Red HatSecurity Response Team Description NASM is an 80x86 assemblerTwo sta ...

Josh Bressers discovered a buffer overflow in the ieee_putascii() function of nasm If an attacker tricked a user into assembling a malicious source file, they could exploit this to execute arbitrary code with the privileges of the user that runs nasm ...

NVD-CWE-Other http://www.redhat.com/support/errata/RHSA-2005-381.html http://www.securityfocus.com/bid/13506 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11256 https://access.redhat.com/errata/RHSA-2005:381 https://usn.ubuntu.com/128-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-1194

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect