CVE-2007-5395
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2007-5395
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2007-5395.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2007-5395
- Downstream
- Published
- 2007-11-08T02:46:00Z
- Modified
- 2025-08-09T19:01:27Z
- Summary
- [none]
- Details
-
Stack-based buffer overflow in the separateword function in tokenize.c in Link Grammar 4.1b and possibly other versions, as used in AbiWord Link Grammar 4.2.4, allows remote attackers to execute arbitrary code via a long word, as reachable through the separatesentence function.
- References
-
- http://secunia.com/advisories/27300
- http://secunia.com/advisories/27340
- http://secunia.com/advisories/27631
- http://secunia.com/advisories/27702
- http://secunia.com/advisories/27783
- http://secunia.com/advisories/28101
- http://secunia.com/secunia_research/2007-78/advisory/
- http://secunia.com/secunia_research/2007-79/advisory/
- http://security.gentoo.org/glsa/glsa-200711-27.xml
- http://www.debian.org/security/2007/dsa-1432
- http://www.ubuntu.com/usn/usn-545-1
- http://www.vupen.com/english/advisories/2007/3770
- http://www.vupen.com/english/advisories/2007/3771
- https://bugzilla.redhat.com/show_bug.cgi?id=371221
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450695
- http://bugs.gentoo.org/show_bug.cgi?id=196803
- http://www.securityfocus.com/archive/1/483368/100/0/threaded
- http://www.securityfocus.com/archive/1/483370/100/0/threaded
- http://www.securityfocus.com/bid/26365
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38317
- https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00411.html