Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2007:0124
HistoryMar 23, 2007 - 12:00 a.m.

(RHSA-2007:0124) Moderate: file security update

2007-03-2300:00:00
access.redhat.com
8

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.036 Low

EPSS

Percentile

90.6%

JSON

The file command is used to identify a particular file according to the
type of data contained by the file.

An integer underflow flaw was found in the file utility. An attacker could
create a carefully crafted file which, if examined by a victim using the
file utility, could lead to arbitrary code execution. (CVE-2007-1536)

This issue did not affect the version of the file utility distributed with
Red Hat Enterprise Linux 2.1 or 3.

Users should upgrade to this erratum package, which contain a backported
patch to correct this issue.

Related

nessus 20
openvas 16
cve 2
cert 1
slackware 1
oraclelinux 1
debian 2
fedora 1
ubuntucve 2
freebsd_advisory 1
ubuntu 1
prion 2
freebsd 1
centos 2
gentoo 3
debiancve 2
suse 1
veracode 1
securityvulns 1
redhat 1
seebug 1
nessus
nessus
openSUSE 10 Security Update : file (file-3033)
2007-10-17 00:00:00
CentOS 4 : file (CESA-2007:0124)
2007-03-26 00:00:00
Oracle Linux 4 : file (ELSA-2007-0124)
2013-07-12 00:00:00
openvas
openvas
Slackware Advisory SSA:2007-093-01 file [and bin package]
2012-09-11 00:00:00
Slackware Advisory SSA:2007-093-01 file [and bin package]
2012-09-11 00:00:00
Ubuntu Update for file vulnerability USN-439-1
2009-03-23 00:00:00
cve
cve
CVE-2007-1536
2007-03-20 20:19:00
CVE-2007-2799
2007-05-23 21:30:00
cert
cert
file integer overflow vulnerability
2007-03-26 00:00:00
slackware
slackware
[slackware-security] file [and bin package]
2007-04-03 23:22:39
oraclelinux
oraclelinux
Moderate: file security update
2007-03-23 00:00:00
debian
debian
[SECURITY] [DSA 1274-1] New file packages fix arbitrary code execution
2007-04-02 12:10:57
[SECURITY] [DSA 1274-1] New file packages fix arbitrary code execution
2007-04-02 12:10:57
fedora
fedora
[SECURITY] Fedora Core 6 Update: file-4.19-2.fc6
2007-03-30 16:07:48
ubuntucve
ubuntucve
CVE-2007-1536
2007-03-20 00:00:00
CVE-2007-2799
2007-05-23 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-07:04.file
2007-05-23 00:00:00
ubuntu
ubuntu
file vulnerability
2007-03-22 00:00:00
prion
prion
Design/Logic Flaw
2007-03-20 20:19:00
Integer overflow
2007-05-23 21:30:00
freebsd
freebsd
FreeBSD -- heap overflow in file(1)
2007-05-23 00:00:00
centos
centos
file security update
2007-03-23 22:21:06
file security update
2007-05-30 18:29:19
gentoo
gentoo
file: Integer underflow
2007-03-30 00:00:00
The Sleuth Kit: Integer underflow
2007-10-18 00:00:00
AMD64 x86 emulation base libraries: Multiple vulnerabilities
2014-12-12 00:00:00
debiancve
debiancve
CVE-2007-1536
2007-03-20 20:19:00
CVE-2007-2799
2007-05-23 21:30:00
suse
suse
potential code execution in file
2007-07-04 13:45:34
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:18:35
securityvulns
securityvulns
file utilities integer overflow
2007-03-24 00:00:00
redhat
redhat
(RHSA-2007:0391) Moderate: file security update
2007-05-30 00:00:00
seebug
seebug
Apple Mac OS X 2007-005多个安全漏洞
2007-05-25 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.036 Low

EPSS

Percentile

90.6%

JSON
Related for RHSA-2007:0124
nessus20openvas16cve2cert1slackware1oraclelinux1debian2fedora1ubuntucve2freebsd_advisory1ubuntu1prion2freebsd1centos2gentoo3debiancve2suse1veracode1securityvulns1redhat1seebug1