| ID |
CVE-2007-2452
|
| Summary |
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:gnu:findutils:4.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:findutils:4.0:*:*:*:*:*:*:*
-
cpe:2.3:a:gnu:findutils:4.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:findutils:4.1:*:*:*:*:*:*:*
-
cpe:2.3:a:gnu:findutils:4.2.28:*:*:*:*:*:*:*
cpe:2.3:a:gnu:findutils:4.2.28:*:*:*:*:*:*:*
-
cpe:2.3:a:gnu:findutils:4.2.29:*:*:*:*:*:*:*
cpe:2.3:a:gnu:findutils:4.2.29:*:*:*:*:*:*:*
-
cpe:2.3:a:gnu:findutils:4.2.30:*:*:*:*:*:*:*
cpe:2.3:a:gnu:findutils:4.2.30:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 6.0 (as of 16-10-2018 - 16:44) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
MEDIUM |
SINGLE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:M/Au:S/C:P/I:P/A:P
|
| refmap
via4
|
| bid | 24250 | | bugtraq | 20070530 GNU Findutils release 4.2.31 fixes CVE-2007-2452 (GNU locate heap buffer overrun) | | hp | | | osvdb | 36827 | | sectrack | 1018183 | | secunia | | | sreason | 2760 | | vupen | - ADV-2007-2015
- ADV-2010-1796
| | xf | findutils-filename-bo(34628) |
|
| statements
via4
|
| contributor | Mark J Cox | | lastmodified | 2007-06-11 | | organization | Red Hat | | statement | Not vulnerable. Red Hat did not ship GNU locate in Red Hat Enterprise Linux 2.1, 3, 4, or 5. This issue does not affect the ’mlocate’ or ’slocate’ packages that are supplied with Red Hat Enterprise Linux. |
|
| Last major update |
16-10-2018 - 16:44 |
| Published |
04-06-2007 - 16:30 |
| Last modified |
16-10-2018 - 16:44 |
