CVE-2007-4570

EPSS 0.07%
Veröffentlicht 10.11.2007 00:46:00
Zuletzt bearbeitet 23.04.2026 00:35:47
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Algorithmic complexity vulnerability in the MCS translation daemon in mcstrans 0.2.3 allows local users to cause a denial of service (temporary daemon outage) via a large range of compartments in sensitivity labels.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

NVD 2 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Redhat ≫ Mcstrans Version0.2.3

Redhat ≫ Enterprise Linux Version5.0 Updateunkown Editionserver

Redhat ≫ Mcstrans Version0.2.3

Redhat ≫ Enterprise Linux Version5.0 Updateunkown Editionclient

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.219

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	1.9	3.4	2.9	AV:L/AC:M/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://osvdb.org/39244

http://secunia.com/advisories/27589

http://www.securityfocus.com/bid/26371

https://bugzilla.redhat.com/attachment.cgi?id=193951

https://bugzilla.redhat.com/show_bug.cgi?id=288201

https://exchange.xforce.ibmcloud.com/vulnerabilities/38357

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10350

https://rhn.redhat.com/errata/RHSA-2007-0542.html

Patch

https://nvd.nist.gov/vuln/detail/CVE-2007-4570

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-4570

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-4570

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2007-4570