ID CVE-2007-2452
Summary Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
References
Vulnerable Configurations
  • cpe:2.3:a:gnu:findutils:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:findutils:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:findutils:4.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:findutils:4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:findutils:4.2.28:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:findutils:4.2.28:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:findutils:4.2.29:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:findutils:4.2.29:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:findutils:4.2.30:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:findutils:4.2.30:*:*:*:*:*:*:*
CVSS
Base: 6.0 (as of 16-10-2018 - 16:44)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:M/Au:S/C:P/I:P/A:P
refmap via4
bid 24250
bugtraq 20070530 GNU Findutils release 4.2.31 fixes CVE-2007-2452 (GNU locate heap buffer overrun)
hp
  • HPSBMA02554
  • SSRT100018
osvdb 36827
sectrack 1018183
secunia
  • 25477
  • 40551
sreason 2760
vupen
  • ADV-2007-2015
  • ADV-2010-1796
xf findutils-filename-bo(34628)
statements via4
contributor Mark J Cox
lastmodified 2007-06-11
organization Red Hat
statement Not vulnerable. Red Hat did not ship GNU locate in Red Hat Enterprise Linux 2.1, 3, 4, or 5. This issue does not affect the ’mlocate’ or ’slocate’ packages that are supplied with Red Hat Enterprise Linux.
Last major update 16-10-2018 - 16:44
Published 04-06-2007 - 16:30
Back to Top