CVE-2007-1536

File < 4.19 - Numeric Error

Title source: rule

Description

Integer underflow in the file_printf function in the "file" program before 4.20 allows user-assisted attackers to execute arbitrary code via a file that triggers a heap-based buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jean-Sebastien Guay-Leroux · cremotelinux

https://www.exploit-db.com/exploits/29753

View Code ZIP pw:eip

References (43)

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/1939

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10658

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/36283

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/1040

[Vendor Advisory] http://www.ubuntu.com/usn/usn-439-1

[Issue Tracking] https://issues.rpath.com/browse/RPL-1148

[Vendor Advisory] http://secunia.com/advisories/27314

[Vendor Advisory] http://docs.info.apple.com/article.html?artnum=305530

[Vendor Advisory] http://secunia.com/advisories/25393

[Vendor Advisory] http://secunia.com/advisories/29179

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/23021

[Vendor Advisory] http://secunia.com/advisories/24616

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1017796

[Various Sources] http://openbsd.org/errata40.html#015_file

[Vendor Advisory] http://secunia.com/advisories/27307

[Patch] http://mx.gw.com/pipermail/file/2007/000161.html

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2007:067

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/477950/100/0/threaded

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2007_5_sr.html

[Vendor Advisory] http://secunia.com/advisories/24723

... and 23 more

Scores

EPSS 0.4193

EPSS Percentile 97.4%

Details

CWE

CWE-189

Status published

Products (1)

file/file < 4.19

Published Mar 20, 2007

Tracked Since Feb 18, 2026