CVE-2007-2452
https://notcve.org/view.php?id=CVE-2007-2452
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036. Desbordamiento de búfer basado en pila en la función visit_old_format en locate/locate.c en GNU findutils anterior a 4.2.31 podría permitir a atacantes dependientes del contexto ejecutar código de su elección a través de un nombre de ruta largo en un base de datos localizada que tenga un formato viejo, una vulnerabilidad diferente que CVE-2001-1036. • http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02286083 http://osvdb.org/36827 http://secunia.com/advisories/25477 http://secunia.com/advisories/40551 http://securityreason.com/securityalert/2760 http://www.securityfocus.com/archive/1/470108/100/0/threaded http://www.securityfocus.com/bid/24250 http://www.securitytracker.com/id?1018183 http://www.vupen.com/english/advisories/2007/2015 http://www.vupen.com/english/advisories/2010/1796 https://exchange.xforce.i •
CVE-2001-1036 – GNU findutils 4.0/4.1 - Locate Arbitrary Command Execution
https://notcve.org/view.php?id=CVE-2001-1036
GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory. • https://www.exploit-db.com/exploits/21043 http://www.osvdb.org/5477 http://www.securityfocus.com/archive/1/200991 http://www.securityfocus.com/bid/3127 https://exchange.xforce.ibmcloud.com/vulnerabilities/6932 •