[sarg] [CVE-2008-1167] arbitrary code execution
Bug #203472 reported by
disabled.user
This bug report is a duplicate of:
Bug #202758: [CVE-2008-1168] XSS in log and useragent parser.
Edit
Remove
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| sarg (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: sarg
References:
SUSE-SR:2008:006
Quoting CVE-2008-116:
"Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header."
CVE References
To post a comment you must log in.
