Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4268

Overview

Vulnerability Score 3.7 3.7
CVE Id CVE-2005-4268
Last Modified 18 Jul 2011 09:33:23
Published 15 Dec 2005 01:11:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2005-4268

Summary

Buffer overflow in cpio 2.6-8.FC4 on 64-bit platforms, when creating a cpio archive, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a file whose size is represented by more than 8 digits.

Vulnerable Systems

Application

  • Gnu Cpio 2.6-8


References

CONFIRM - https://issues.rpath.com/browse/RPL-1338

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=172669

XF - cpio-file-size-bo(23855)

UBUNTU - USN-234-1

BID - 16057

REDHAT - RHSA-2010:0145

REDHAT - RHSA-2007:0245

OSVDB - 22194

SECUNIA - 25161

SECUNIA - 25098

SECUNIA - 20117

SECUNIA - 18395

SECUNIA - 18280

SECUNIA - 18278

SECUNIA - 18251

SUSE - SUSE-SR:2006:010

MANDRIVA - MDKSA-2005:237

FREEBSD - FreeBSD-SA-06:03


Last Updated: 27 May 2016 10:41:14