CVE-2007-4570

EPSS 0.07%
Veröffentlicht 10.11.2007 00:46:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

Algorithmic complexity vulnerability in the MCS translation daemon in mcstrans 0.2.3 allows local users to cause a denial of service (temporary daemon outage) via a large range of compartments in sensitivity labels.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Redhat ≫ Mcstrans Version0.2.3

Redhat ≫ Enterprise Linux Version5.0 Updateunkown Editionserver

Redhat ≫ Mcstrans Version0.2.3

Redhat ≫ Enterprise Linux Version5.0 Updateunkown Editionclient

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.188

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	1.9	3.4	2.9	AV:L/AC:M/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://osvdb.org/39244

http://secunia.com/advisories/27589

http://www.securityfocus.com/bid/26371

https://bugzilla.redhat.com/attachment.cgi?id=193951

https://bugzilla.redhat.com/show_bug.cgi?id=288201

https://exchange.xforce.ibmcloud.com/vulnerabilities/38357

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10350

https://rhn.redhat.com/errata/RHSA-2007-0542.html

Patch

https://nvd.nist.gov/vuln/detail/CVE-2007-4570

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-4570

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-4570

EUVD