CVE-2008-3196

CVE-2008-3196 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

skeleton.c in yacc does not properly handle reduction of a rule with an empty right hand side, which allows context-dependent attackers to cause an out-of-bounds stack access when the yacc stack pointer points to the end of the stack.

Learn more about our Web Application Penetration Testing UK.