Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-2799HistoryMay 23, 2007 - 9:30 p.m.
CVE-2007-2799
2007-05-2321:30:00
Debian Security Bug Tracker
security-tracker.debian.org
10
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.023 Low
EPSS
Percentile
89.5%
Integer overflow in the โfileโ program 4.20, when running on 32-bit systems, as used in products including The Sleuth Kit, might allow user-assisted attackers to execute arbitrary code via a large file that triggers an overflow that bypasses an assert() statement. NOTE: this issue is due to an incorrect patch for CVE-2007-1536.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | file | <ย 4.21-1 | file_4.21-1_all.deb |
| Debian | 11 | all | file | <ย 4.21-1 | file_4.21-1_all.deb |
| Debian | 10 | all | file | <ย 4.21-1 | file_4.21-1_all.deb |
| Debian | 999 | all | file | <ย 4.21-1 | file_4.21-1_all.deb |
| Debian | 13 | all | file | <ย 4.21-1 | file_4.21-1_all.deb |
Related
nessus
nessus
CentOS 4 / 5 : file (CESA-2007:0391)
2007-06-01 00:00:00
GLSA-200710-19 : The Sleuth Kit: Integer underflow
2007-10-19 00:00:00
Oracle Linux 4 / 5 : file (ELSA-2007-0391)
2013-07-12 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200710-19 (sleuthkit)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200710-19 (sleuthkit)
2008-09-24 00:00:00
SuSE Update for file SUSE-SA:2007:040
2009-01-28 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:18:35
suse
suse
potential code execution in file
2007-07-04 13:45:34
cve
cve
CVE-2007-2799
2007-05-23 21:30:00
CVE-2007-1536
2007-03-20 20:19:00
securityvulns
securityvulns
file utilities integer overflow
2007-03-24 00:00:00
redhat
redhat
(RHSA-2007:0391) Moderate: file security update
2007-05-30 00:00:00
(RHSA-2007:0124) Moderate: file security update
2007-03-23 00:00:00
prion
prion
Integer overflow
2007-05-23 21:30:00
Design/Logic Flaw
2007-03-20 20:19:00
gentoo
gentoo
The Sleuth Kit: Integer underflow
2007-10-18 00:00:00
file: Integer underflow
2007-03-30 00:00:00
file: Integer overflow
2007-05-31 00:00:00
ubuntucve
ubuntucve
CVE-2007-2799
2007-05-23 00:00:00
CVE-2007-1536
2007-03-20 00:00:00
centos
centos
file security update
2007-05-30 18:29:19
file security update
2007-03-23 22:21:06
oraclelinux
oraclelinux
Moderate: file security update
2007-03-23 00:00:00
Moderate: file security update
2007-05-30 00:00:00
slackware
slackware
[slackware-security] file [and bin package]
2007-04-03 23:22:39
cert
cert
file integer overflow vulnerability
2007-03-26 00:00:00
debian
debian
[SECURITY] [DSA 1274-1] New file packages fix arbitrary code execution
2007-04-02 12:10:57
[SECURITY] [DSA 1274-1] New file packages fix arbitrary code execution
2007-04-02 12:10:57
[SECURITY] [DSA 1343-1] New file packages fix arbitrary code execution
2007-07-31 21:36:42
fedora
fedora
[SECURITY] Fedora Core 6 Update: file-4.19-2.fc6
2007-03-30 16:07:48
[SECURITY] Fedora Core 6 Update: file-4.21-1.fc6
2007-06-11 20:01:40
[SECURITY] Fedora Core 5 Update: file-4.21-1.fc5
2007-06-11 20:01:12
freebsd_advisory
freebsd_advisory
FreeBSD-SA-07:04.file
2007-05-23 00:00:00
ubuntu
ubuntu
file vulnerability
2007-03-22 00:00:00
file vulnerability
2007-06-11 00:00:00
freebsd
freebsd
FreeBSD -- heap overflow in file(1)
2007-05-23 00:00:00
debiancve
debiancve
CVE-2007-1536
2007-03-20 20:19:00
seebug
seebug
Fileๅคไธชๆ็ปๆๅกๆผๆด
2007-08-08 00:00:00
Apple Mac OS X 2007-005ๅคไธชๅฎๅ
จๆผๆด
2007-05-25 00:00:00
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.023 Low
EPSS
Percentile
89.5%
Related for DEBIANCVE:CVE-2007-2799