CVE-2007-5497

EPSS 7.79%
Veröffentlicht 07.12.2007 11:46:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Multiple integer overflows in libext2fs in e2fsprogs before 1.40.3 allow user-assisted remote attackers to execute arbitrary code via a crafted filesystem image.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 39

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ext2 Filesystems Utilities ≫ E2fsprogs Version <= 1.40.2

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.02

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.03

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.04

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.05

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.06

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.07

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.08

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.09

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.10

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.11

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.12

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.13

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.14

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.15

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.16

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.17

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.18

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.19

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.20

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.21

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.22

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.23

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.24

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.25

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.26

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.27

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.28

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.29

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.30

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.31

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.32

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.33

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.34

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.35

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.36

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.37

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.38

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.39

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.40

Ext2 Filesystems Utilities ≫ E2fsprogs Version1.40.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	7.79%	0.918

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:P/I:P/A:N

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02286083

http://secunia.com/advisories/40551

Vendor Advisory

http://www.vupen.com/english/advisories/2010/1796

Vendor Advisory

http://secunia.com/advisories/27965

Vendor Advisory

http://www.novell.com/linux/security/advisories/2007_25_sr.html

http://lists.vmware.com/pipermail/security-announce/2008/000007.html

http://secunia.com/advisories/27889

Vendor Advisory

http://secunia.com/advisories/27987

Vendor Advisory

http://secunia.com/advisories/28000

Vendor Advisory

http://secunia.com/advisories/28030

Vendor Advisory

http://secunia.com/advisories/28042

Vendor Advisory

http://secunia.com/advisories/28360

Vendor Advisory

http://secunia.com/advisories/28541

Vendor Advisory

http://secunia.com/advisories/28648

Vendor Advisory

http://secunia.com/advisories/29224

Vendor Advisory

http://secunia.com/advisories/32774

http://sourceforge.net/project/shownotes.php?release_id=560230&group_id=2406

http://support.avaya.com/elmodocs2/security/ASA-2008-040.htm

http://support.citrix.com/article/CTX118766

http://wiki.rpath.com/Advisories:rPSA-2007-0262

http://www.debian.org/security/2007/dsa-1422

http://www.mandriva.com/security/advisories?name=MDKSA-2007:242

http://www.redhat.com/support/errata/RHSA-2008-0003.html

Vendor Advisory

http://www.securityfocus.com/archive/1/487999/100/0/threaded

http://www.securityfocus.com/archive/1/489082/100/0/threaded

http://www.securityfocus.com/bid/26772

http://www.securitytracker.com/id?1019537

http://www.ubuntu.com/usn/usn-555-1

http://www.vmware.com/security/advisories/VMSA-2008-0004.html

http://www.vupen.com/english/advisories/2007/4135

Vendor Advisory

http://www.vupen.com/english/advisories/2008/0761

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/38903

https://issues.rpath.com/browse/RPL-2011

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10399

https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00618.html

https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00629.html

https://nvd.nist.gov/vuln/detail/CVE-2007-5497

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-5497

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-5497

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2007-5497