Computer Security
[EN] securityvulns.ru no-pyccku


GNU findutils locate buffer overflow
Published:01.06.2007
Source:
SecurityVulns ID:7763
Type:remote
Description:Heap buffer overflow on parsing old-format locate database.
Affected:GNU : findutils 4.2
CVE:CVE-2007-2452 (Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.)
Original documentdocumentGNU, GNU Findutils release 4.2.31 fixes CVE-2007-2452 (GNU locate heap buffer overrun) (01.06.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod