Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5037

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-5037
Last Modified 15 Nov 2008 01:59:29
Published 23 Sep 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5037

Summary

Buffer overflow in the inotifytools_snprintf function in src/inotifytools.c in the inotify-tools library before 3.11 allows context-dependent attackers to execute arbitrary code via a long filename.

Vulnerable Systems

Application

  • Inotify-tools 3.10


References

SECUNIA - 26825

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=540277&group_id=171752

OSVDB - 40563

FEDORA - FEDORA-2007-3074

XF - inotifytools-inotifytoolssnprintf-bo(36687)

BID - 25724

DEBIAN - DSA-1440

SECUNIA - 28221

SECUNIA - 27616

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=443913


Last Updated: 27 May 2016 10:46:02