Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2008-3533

Format string vulnerability in the window_error function in yelp-window.c in yelp in Gnome after 2.19.90 and before 2.24 allows remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command line, as demonstrated by use of yelp within (1) man or (2) ghelp URI handlers in Firefox, Evolution, and unspecified other programs.

Published

2008-08-18T17:41:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 10.0 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

10.0

Weaknesses

Type: Primary
CWE-134

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	gnome	yelp	< 2.24	Yes
Application	gnome	gnome	2.20	Yes
Application	gnome	gnome	2.22	Yes

References

http://bugzilla.gnome.org/attachment.cgi?id=115890 Exploit, Issue Tracking ([email protected])
http://bugzilla.gnome.org/show_bug.cgi?id=546364 Exploit, Issue Tracking, Patch ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00000.html Mailing List, Third Party Advisory ([email protected])
http://secunia.com/advisories/31465 Vendor Advisory ([email protected])
http://secunia.com/advisories/31620 Vendor Advisory ([email protected])
http://secunia.com/advisories/31834 Vendor Advisory ([email protected])
http://secunia.com/advisories/32629 Vendor Advisory ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2008:175 Product ([email protected])
http://www.securityfocus.com/bid/30690 Third Party Advisory, VDB Entry ([email protected])
http://www.ubuntu.com/usn/usn-638-1 Third Party Advisory ([email protected])
http://www.vupen.com/english/advisories/2008/2393 Broken Link ([email protected])
https://bugs.launchpad.net/ubuntu/+source/yelp/+bug/254860 Exploit, Patch ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/44449 VDB Entry ([email protected])
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00222.html Mailing List, Third Party Advisory ([email protected])
http://bugzilla.gnome.org/attachment.cgi?id=115890 Exploit, Issue Tracking (af854a3a-2127-422b-91ae-364da2661108)
http://bugzilla.gnome.org/show_bug.cgi?id=546364 Exploit, Issue Tracking, Patch (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00000.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/31465 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/31620 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/31834 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/32629 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2008:175 Product (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/30690 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/usn-638-1 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2008/2393 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.launchpad.net/ubuntu/+source/yelp/+bug/254860 Exploit, Patch (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44449 VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00222.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)