Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-439-1
HistoryMar 22, 2007 - 12:00 a.m.

file vulnerability

2007-03-2200:00:00
ubuntu.com
42

9.8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.049 Low

EPSS

Percentile

92.7%

JSON

Releases

  • Ubuntu 6.10
  • Ubuntu 6.06
  • Ubuntu 5.10

Details

Jean-Sebastien Guay-Leroux discovered that “file” did not correctly
check the size of allocated heap memory. If a user were tricked into
examining a specially crafted file with the “file” utility, a remote
attacker could execute arbitrary code with user privileges.

OSVersionArchitecturePackageVersionFilename
Ubuntu6.10noarchlibmagic1< 4.17-2ubuntu1.1UNKNOWN
Ubuntu6.06noarchlibmagic1< 4.16-0ubuntu3.1UNKNOWN
Ubuntu5.10noarchlibmagic1< 4.12-1ubuntu1.1UNKNOWN

Related

nessus 20
openvas 23
cve 2
cert 1
slackware 1
oraclelinux 1
redhat 2
prion 2
centos 2
freebsd 1
debian 2
fedora 1
ubuntucve 2
freebsd_advisory 1
gentoo 3
debiancve 2
suse 1
securityvulns 1
veracode 1
seebug 1
nessus
nessus
openSUSE 10 Security Update : file (file-3033)
2007-10-17 00:00:00
CentOS 4 : file (CESA-2007:0124)
2007-03-26 00:00:00
Oracle Linux 4 : file (ELSA-2007-0124)
2013-07-12 00:00:00
openvas
openvas
Slackware Advisory SSA:2007-093-01 file [and bin package]
2012-09-11 00:00:00
Debian: Security Advisory (DSA-1274-1)
2023-03-08 00:00:00
Slackware: Security Advisory (SSA:2007-093-01)
2012-09-10 00:00:00
cve
cve
CVE-2007-1536
2007-03-20 20:19:00
CVE-2007-2799
2007-05-23 21:30:00
cert
cert
file integer overflow vulnerability
2007-03-26 00:00:00
slackware
slackware
[slackware-security] file [and bin package]
2007-04-03 23:22:39
oraclelinux
oraclelinux
Moderate: file security update
2007-03-23 00:00:00
redhat
redhat
(RHSA-2007:0124) Moderate: file security update
2007-03-23 00:00:00
(RHSA-2007:0391) Moderate: file security update
2007-05-30 00:00:00
prion
prion
Design/Logic Flaw
2007-03-20 20:19:00
Integer overflow
2007-05-23 21:30:00
centos
centos
file security update
2007-03-23 22:21:06
file security update
2007-05-30 18:29:19
freebsd
freebsd
FreeBSD -- heap overflow in file(1)
2007-05-23 00:00:00
debian
debian
[SECURITY] [DSA 1274-1] New file packages fix arbitrary code execution
2007-04-02 12:10:57
[SECURITY] [DSA 1274-1] New file packages fix arbitrary code execution
2007-04-02 12:10:57
fedora
fedora
[SECURITY] Fedora Core 6 Update: file-4.19-2.fc6
2007-03-30 16:07:48
ubuntucve
ubuntucve
CVE-2007-1536
2007-03-20 00:00:00
CVE-2007-2799
2007-05-23 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-07:04.file
2007-05-23 00:00:00
gentoo
gentoo
file: Integer underflow
2007-03-30 00:00:00
The Sleuth Kit: Integer underflow
2007-10-18 00:00:00
AMD64 x86 emulation base libraries: Multiple vulnerabilities
2014-12-12 00:00:00
debiancve
debiancve
CVE-2007-1536
2007-03-20 20:19:00
CVE-2007-2799
2007-05-23 21:30:00
suse
suse
potential code execution in file
2007-07-04 13:45:34
securityvulns
securityvulns
file utilities integer overflow
2007-03-24 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:18:35
seebug
seebug
Apple Mac OS X 2007-005多个安全漏洞
2007-05-25 00:00:00

9.8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.049 Low

EPSS

Percentile

92.7%

JSON
Related for USN-439-1
nessus20openvas23cve2cert1slackware1oraclelinux1redhat2prion2centos2freebsd1debian2fedora1ubuntucve2freebsd_advisory1gentoo3debiancve2suse1securityvulns1veracode1seebug1