Lucene search

[email protected]CVE-2007-3961

HistoryJul 25, 2007 - 5:30 p.m.

CVE-2007-3961

2007-07-2517:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-3961

fsplib

off-by-one error

remote attackers

denial of service

maxnamelen

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.045 Low

EPSS

Percentile

92.4%

JSON

Off-by-one error in the fsp_readdir_r function in fsplib.c in fsplib before 0.9 allows remote attackers to cause a denial of service via a directory entry whose length is exactly MAXNAMELEN, which prevents a terminating null byte from being added.

CPENameOperatorVersion
fsp:c_libraryfsp c libraryle0.7

CPE	Name	Operator	Version
fsp:c_library	fsp c library	le	0.7

References

bugs.gentoo.org/show_bug.cgi?id=188252

fsp.cvs.sourceforge.net/fsp/fsplib/ChangeLog?revision=1.17&view=markup

fsp.cvs.sourceforge.net/fsp/fsplib/fsplib.c?r1=1.19&r2=1.20

osvdb.org/38568

secunia.com/advisories/26184

secunia.com/advisories/26378

secunia.com/advisories/27501

security.gentoo.org/glsa/glsa-200711-01.xml

www.mandriva.com/security/advisories?name=MDVSA-2008:018

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.045 Low

EPSS

Percentile

92.4%

JSON

Related for CVE-2007-3961

prion1 ubuntucve1 nessus4 openvas8 freebsd2 gentoo1