Description
Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF file.
Exploits (1)
References (5)
Core 5
Core References
Various Sources vendor-advisory
x_refsource_trustix
http://www.trustix.net/errata/2004/0063/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1012433
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200412-07.xml
Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/11771
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18368
Scores
EPSS
0.0572
EPSS Percentile
90.5%
Details
Status
published
Products (16)
file/file
4.0
file/file
4.1
file/file
4.2
file/file
4.3
file/file
4.4
file/file
4.5
file/file
4.6
file/file
4.7
file/file
4.8
file/file
4.9
... and 6 more
Published
Jan 10, 2005
Tracked Since
Feb 18, 2026