ByteOS Network

NVD Vulnerability Details :

CVE-2008-1391

Modified

Source-cve@mitre.org

Published At-27 Mar, 2008 | 17:44

Updated At-23 Apr, 2026 | 00:35

Multiple integer overflows in libc in NetBSD 4.x, FreeBSD 6.x and 7.x, and probably other BSD and Apple Mac OS platforms allow context-dependent attackers to execute arbitrary code via large values of certain integer fields in the format argument to (1) the strfmon function in lib/libc/stdlib/strfmon.c, related to the GET_NUMBER macro; and (2) the printf function, related to left_prec and right_prec.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P

Type: Primary

Version: 2.0

Base score: 7.5

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:P/I:P/A:P

CPE Matches

Weaknesses

CWE ID	Type	Source
CWE-189	Primary	nvd@nist.gov

CWE ID: CWE-189

Type: Primary

Source: nvd@nist.gov

Vendor Statements

Organization : Red Hat

Last Modified : 2009-09-24T00:00:00

Red Hat does not consider this to be a security issue. Properly written application should not use arbitrary untrusted data as part of the format string passed to functions as strfmon or printf family functions.

References

Hyperlink	Source	Resource
http://cvsweb.netbsd.org/bsdweb.cgi/src/lib/libc/stdlib/strfmon.c	cve@mitre.org	N/A
http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html	cve@mitre.org	N/A
http://secunia.com/advisories/29574	cve@mitre.org	N/A
http://secunia.com/advisories/33179	cve@mitre.org	N/A
http://securityreason.com/achievement_securityalert/53	cve@mitre.org	Exploit
http://securityreason.com/securityalert/3770	cve@mitre.org	Exploit
http://support.apple.com/kb/HT3338	cve@mitre.org	N/A
http://www.debian.org/security/2010/dsa-2058	cve@mitre.org	N/A
http://www.securityfocus.com/archive/1/490158/100/0/threaded	cve@mitre.org	N/A
http://www.securityfocus.com/bid/28479	cve@mitre.org	N/A
http://www.securitytracker.com/id?1019722	cve@mitre.org	N/A
http://www.us-cert.gov/cas/techalerts/TA08-350A.html	cve@mitre.org	US Government Resource
http://www.vupen.com/english/advisories/2008/3444	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/41504	cve@mitre.org	N/A
https://lists.opensuse.org/opensuse-security-announce/2010-10/msg00007.html	cve@mitre.org	N/A
http://cvsweb.netbsd.org/bsdweb.cgi/src/lib/libc/stdlib/strfmon.c	af854a3a-2127-422b-91ae-364da2661108	N/A
http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/29574	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/33179	af854a3a-2127-422b-91ae-364da2661108	N/A
http://securityreason.com/achievement_securityalert/53	af854a3a-2127-422b-91ae-364da2661108	Exploit
http://securityreason.com/securityalert/3770	af854a3a-2127-422b-91ae-364da2661108	Exploit
http://support.apple.com/kb/HT3338	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.debian.org/security/2010/dsa-2058	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/archive/1/490158/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/28479	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id?1019722	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.us-cert.gov/cas/techalerts/TA08-350A.html	af854a3a-2127-422b-91ae-364da2661108	US Government Resource
http://www.vupen.com/english/advisories/2008/3444	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/41504	af854a3a-2127-422b-91ae-364da2661108	N/A
https://lists.opensuse.org/opensuse-security-announce/2010-10/msg00007.html	af854a3a-2127-422b-91ae-364da2661108	N/A