CVE-2008-1994

Name of the Vulnerable Software and Affected Versions Acon versions 1.0.5-5 through 1.0.5-7

Description The issue is related to multiple stack-based buffer overflows in files acon.c, menu.c, and child.c. This allows local users to execute arbitrary code via a long HOME environment variable or a large number of terminal columns.

Recommendations For versions 1.0.5-5 through 1.0.5-7, consider restricting access to the affected files acon.c, menu.c, and child.c to minimize the risk of exploitation. As a temporary workaround, limit the length of the HOME environment variable and the number of terminal columns to prevent buffer overflows. At the moment, there is no information about a newer version that contains a fix for this issue.