CVE-2007-5497 – e2fsprogs multiple integer overflows

https://notcve.org/view.php?id=CVE-2007-5497

Multiple integer overflows in libext2fs in e2fsprogs before 1.40.3 allow user-assisted remote attackers to execute arbitrary code via a crafted filesystem image. Múltiples desbordamientos enteros en libext2fs en e2fsprogs versiones anteriores a 1.40.3, permiten a los atacantes remotos asistidos por el usuario ejecutar código arbitrario por medio de una imagen del sistema de archivos especialmente diseñada. • http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02286083 http://lists.vmware.com/pipermail/security-announce/2008/000007.html http://secunia.com/advisories/27889 http://secunia.com/advisories/27965 http://secunia.com/advisories/27987 http://secunia.com/advisories/28000 http://secunia.com/advisories/28030 http://secunia.com/advisories/28042 http://secunia.com/advisories/28360 http://secunia.com/advisories/28541 http://secunia.com/advisories/28648 http://secunia.com • CWE-189: Numeric Errors CWE-190: Integer Overflow or Wraparound •