Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0537

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2009-0537
Last Modified 21 Mar 2009 01:54:35
Published 09 Mar 2009 05:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2009-0537

Summary

Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and earlier and (2) Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service (application crash) via a deep directory tree, related to the fts_level structure member, as demonstrated by (a) du, (b) rm, (c) chmod, and (d) chgrp on OpenBSD; and (e) SearchIndexer.exe on Vista Enterprise.

Vulnerable Systems

Operating System

  • Openbsd 2.0

  • Openbsd 2.1

  • Openbsd 2.2

  • Openbsd 2.3

  • Openbsd 2.4

  • Openbsd 2.5

  • Openbsd 2.6

  • Openbsd 2.7

  • Openbsd 2.8

  • Openbsd 2.9

  • Openbsd 3.0

  • Openbsd 3.1

  • Openbsd 3.2

  • Openbsd 3.3

  • Openbsd 3.4

  • Openbsd 3.5

  • Openbsd 3.6

  • Openbsd 3.7

  • Openbsd 3.8

  • Openbsd 3.9

  • Openbsd 4.0

  • Openbsd 4.1

  • Openbsd 4.2

  • Openbsd 4.3

  • Openbsd 4.4

Application

  • Microsoft Interix 6.0


References

SECTRACK - 1021818

BID - 34008

BUGTRAQ - 20090305 libc:fts_*():multiple vendors, Denial-of-service

CONFIRM - http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/fts.c.diff?r1=1.41;r2=1.42;f=h

CONFIRM - http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/fts.c

MILW0RM - 8163

SREASONRES - 20090304 libc:fts_*():multiple vendors, Denial-of-service


Last Updated: 27 May 2016 10:50:17