Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0066

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0066
Last Modified 05 Sep 2008 04:23:11
Published 16 Feb 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0066

Summary

Secure Locate (slocate) allows local users to corrupt memory via a malformed database file that specifies an offset value that accesses memory outside of the intended buffer.

Vulnerable Systems

Application

  • Kevin Lindsay Secure Locate 1.4

  • Kevin Lindsay Secure Locate 1.5

  • Kevin Lindsay Secure Locate 1.6

  • Kevin Lindsay Secure Locate 2.0

  • Kevin Lindsay Secure Locate 2.1

  • Kevin Lindsay Secure Locate 2.2


References

BID - 2004

BUGTRAQ - 20001126 [MSY] S(ecure)Locate heap corruption vulnerability

XF - slocate-heap-execute-code(5594)

TURBO - TLSA2001002-1

REDHAT - RHSA-2000:128

MANDRAKE - MDKSA-2000:085

DEBIAN - DSA-005-1

CONECTIVA - CLA-2001:369


Last Updated: 27 May 2016 10:36:07