CVE-2008-1687

NONECVSS 0.0

0.0

The (1) maketemp and (2) mkstemp builtin functions in GNU m4 before 1.4.11 do not quote their output when a file is created, which might allow context-dependent attackers to trigger a macro expansion, leading to unspecified use of an incorrect filename.

🔗 References (20)

cve@mitrehttp://secunia.com/advisories/29671
cve@mitrehttp://secunia.com/advisories/29729
cve@mitrehttp://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.510612
cve@mitrehttp://www.openwall.com/lists/oss-security/2008/04/07/1
cve@mitrehttp://www.openwall.com/lists/oss-security/2008/04/07/12
cve@mitrehttp://www.openwall.com/lists/oss-security/2008/04/07/3
cve@mitrehttp://www.openwall.com/lists/oss-security/2008/04/07/4
cve@mitrehttp://www.securityfocus.com/bid/28688
cve@mitrehttp://www.vupen.com/english/advisories/2008/1151/references
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/41706
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/29671
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/29729
af854a3a-2127-422b-91ae-364da2661108http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.510612
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2008/04/07/1
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2008/04/07/12

Is Your Infrastructure Affected by CVE-2008-1687?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-1687

📅 Published

🔄 Last Modified

🔗 References (20)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-1687?