Lucene search

[email protected]CVE-2007-4570

HistoryNov 10, 2007 - 12:46 a.m.

CVE-2007-4570

2007-11-1000:46:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2007-4570

algorithmic complexity vulnerability

mcstrans

local users

denial of service

sensitivity labels

6.1 Medium

AI Score

Confidence

Low

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Algorithmic complexity vulnerability in the MCS translation daemon in mcstrans 0.2.3 allows local users to cause a denial of service (temporary daemon outage) via a large range of compartments in sensitivity labels.

CPENameOperatorVersion
redhat:mcstransredhat mcstranseq0.2.3

CPE	Name	Operator	Version
redhat:mcstrans	redhat mcstrans	eq	0.2.3

References

osvdb.org/39244

secunia.com/advisories/27589

www.securityfocus.com/bid/26371

bugzilla.redhat.com/attachment.cgi?id=193951

bugzilla.redhat.com/show_bug.cgi?id=288201

exchange.xforce.ibmcloud.com/vulnerabilities/38357

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10350

rhn.redhat.com/errata/RHSA-2007-0542.html

6.1 Medium

AI Score

Confidence

Low

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2007-4570

nessus3 openvas1 prion1 veracode1 oraclelinux1 redhat1