Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5497

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2007-5497
Last Modified 30 Oct 2012 10:45:15
Published 07 Dec 2007 06:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5497

Summary

Multiple integer overflows in libext2fs in e2fsprogs before 1.40.3 allow user-assisted remote attackers to execute arbitrary code via a crafted filesystem image.

Vulnerable Systems

Application

  • Ext2 Filesystems Utilities E2fsprogs 1.02

  • Ext2 Filesystems Utilities E2fsprogs 1.03

  • Ext2 Filesystems Utilities E2fsprogs 1.04

  • Ext2 Filesystems Utilities E2fsprogs 1.05

  • Ext2 Filesystems Utilities E2fsprogs 1.06

  • Ext2 Filesystems Utilities E2fsprogs 1.07

  • Ext2 Filesystems Utilities E2fsprogs 1.08

  • Ext2 Filesystems Utilities E2fsprogs 1.09

  • Ext2 Filesystems Utilities E2fsprogs 1.10

  • Ext2 Filesystems Utilities E2fsprogs 1.11

  • Ext2 Filesystems Utilities E2fsprogs 1.12

  • Ext2 Filesystems Utilities E2fsprogs 1.13

  • Ext2 Filesystems Utilities E2fsprogs 1.14

  • Ext2 Filesystems Utilities E2fsprogs 1.15

  • Ext2 Filesystems Utilities E2fsprogs 1.16

  • Ext2 Filesystems Utilities E2fsprogs 1.17

  • Ext2 Filesystems Utilities E2fsprogs 1.18

  • Ext2 Filesystems Utilities E2fsprogs 1.19

  • Ext2 Filesystems Utilities E2fsprogs 1.20

  • Ext2 Filesystems Utilities E2fsprogs 1.21

  • Ext2 Filesystems Utilities E2fsprogs 1.22

  • Ext2 Filesystems Utilities E2fsprogs 1.23

  • Ext2 Filesystems Utilities E2fsprogs 1.24

  • Ext2 Filesystems Utilities E2fsprogs 1.25

  • Ext2 Filesystems Utilities E2fsprogs 1.26

  • Ext2 Filesystems Utilities E2fsprogs 1.27

  • Ext2 Filesystems Utilities E2fsprogs 1.28

  • Ext2 Filesystems Utilities E2fsprogs 1.29

  • Ext2 Filesystems Utilities E2fsprogs 1.30

  • Ext2 Filesystems Utilities E2fsprogs 1.31

  • Ext2 Filesystems Utilities E2fsprogs 1.32

  • Ext2 Filesystems Utilities E2fsprogs 1.33

  • Ext2 Filesystems Utilities E2fsprogs 1.34

  • Ext2 Filesystems Utilities E2fsprogs 1.35

  • Ext2 Filesystems Utilities E2fsprogs 1.36

  • Ext2 Filesystems Utilities E2fsprogs 1.37

  • Ext2 Filesystems Utilities E2fsprogs 1.38

  • Ext2 Filesystems Utilities E2fsprogs 1.39

  • Ext2 Filesystems Utilities E2fsprogs 1.40

  • Ext2 Filesystems Utilities E2fsprogs 1.40.1

  • Ext2 Filesystems Utilities E2fsprogs 1.40.2


References

FEDORA - FEDORA-2007-4461

FEDORA - FEDORA-2007-4447

CONFIRM - https://issues.rpath.com/browse/RPL-2011

XF - e2fsprogs-libext2fs-integer-overflow(38903)

VUPEN - ADV-2010-1796

VUPEN - ADV-2008-0761

VUPEN - ADV-2007-4135

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2008-0004.html

UBUNTU - USN-555-1

SECTRACK - 1019537

BID - 26772

BUGTRAQ - 20080303 VMSA-2008-0004 Low: Updated e2fsprogs service console package

BUGTRAQ - 20080212 FLEA-2008-0005-1 e2fsprogs

REDHAT - RHSA-2008:0003

SUSE - SUSE-SR:2007:025

MANDRIVA - MDKSA-2007:242

DEBIAN - DSA-1422

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2007-0262

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2008-040.htm

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=560230&group_id=2406

SECUNIA - 40551

SECUNIA - 29224

SECUNIA - 28648

SECUNIA - 28541

SECUNIA - 28360

SECUNIA - 28042

SECUNIA - 28030

SECUNIA - 28000

SECUNIA - 27987

SECUNIA - 27965

SECUNIA - 27889

MLIST - [Security-announce] 20080303 VMSA-2008-0004 Low: Updated e2fsprogs service console package

HP - HPSBMA02554

CONFIRM - http://support.citrix.com/article/CTX118766

SECUNIA - 32774

HP - SSRT100018


Last Updated: 27 May 2016 11:01:20