Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4476

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4476
Last Modified 18 Jul 2011 10:04:41
Published 04 Sep 2007 09:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4476

Summary

Buffer overflow in the safer_name_suffix function in GNU tar has unspecified attack vectors and impact, resulting in a "crashing stack."

Vulnerable Systems

Application

  • Gnu Tar


References

SECUNIA - 26674

VUPEN - ADV-2010-0629

VUPEN - ADV-2010-0628

UBUNTU - USN-709-1

UBUNTU - USN-650-1

REDHAT - RHSA-2010:0144

REDHAT - RHSA-2010:0141

SUSE - SUSE-SR:2007:018

SUNALERT - 1021680

SECUNIA - 39008

SECUNIA - 33567

SECUNIA - 32051

FEDORA - FEDORA-2007-2673

FEDORA - FEDORA-2007-735

CONFIRM - https://issues.rpath.com/browse/RPL-1861

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=280961

BID - 26445

SUSE - SUSE-SR:2007:019

MANDRIVA - MDKSA-2007:233

MANDRIVA - MDKSA-2007:197

DEBIAN - DSA-1566

DEBIAN - DSA-1438

GENTOO - GLSA-200711-18

SECUNIA - 29968

SECUNIA - 28255

SECUNIA - 27857

SECUNIA - 27681

SECUNIA - 27514

SECUNIA - 27453

SECUNIA - 27331

SECUNIA - 26987

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=196978

Related Patches

Novell SUSE 2007:4184 cpio security update for SLE 10 SP1 i586


Last Updated: 27 May 2016 10:45:52