CVE-2011-4000

EUVD-2011-3953
Buffer overflow in ChaSen 2.4.x allows remote attackers to execute arbitrary code via a crafted string.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
Affected Products (NVD)
VendorProductVersion
nara_institute_of_science_and_technologychasen
2.4.0
nara_institute_of_science_and_technologychasen
2.4.1
nara_institute_of_science_and_technologychasen
2.4.2
nara_institute_of_science_and_technologychasen
2.4.3
nara_institute_of_science_and_technologychasen
2.4.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
chasen
bookworm
2.4.5-44
fixed
bullseye
2.4.5-44
fixed
sid
2.4.5-44
fixed
trixie
2.4.5-44
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chasen
hardy
not-affected
lucid
ignored
maverick
Fixed 2.4.4-11+squeeze2build0.10.10.1
released
natty
Fixed 2.4.4-11+squeeze2build0.11.04.1
released
oneiric
ignored
precise
not-affected
quantal
not-affected
raring
not-affected
saucy
not-affected
Common Weakness Enumeration
References
http://jvn.jp/en/jp/JVN16901583/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2011-000099
http://secunia.com/advisories/47458
https://hermes.opensuse.org/messages/13154862
https://hermes.opensuse.org/messages/13155433
http://jvn.jp/en/jp/JVN16901583/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2011-000099
http://secunia.com/advisories/47458
https://hermes.opensuse.org/messages/13154862
https://hermes.opensuse.org/messages/13155433