CVE-2009-5029

GNU Glibc < 2.14 - Numeric Error

Title source: rule

Description

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

Exploits (1)

exploitdb WORKING POC VERIFIED

by dividead · cdoslinux

https://www.exploit-db.com/exploits/36404

View Code ZIP pw:eip

References (5)

[Exploit] http://dividead.wordpress.com/2009/06/01/glibc-timezone-integer-overflow/

[Mailing List] http://lists.grok.org.uk/pipermail/full-disclosure/2011-December/084452.html

[Patch] http://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=97ac2654b2d831acaa18a2b018b0736245903fd2

[Exploit] http://sourceware.org/ml/libc-alpha/2011-12/msg00037.html

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=761245

Scores

EPSS 0.0277

EPSS Percentile 86.1%

Details

CWE

CWE-189

Status published

Products (15)

gnu/glibc 2.0

gnu/glibc 2.0.1

gnu/glibc 2.0.2

gnu/glibc 2.0.3

gnu/glibc 2.0.4

gnu/glibc 2.0.5

gnu/glibc 2.0.6

gnu/glibc 2.1

gnu/glibc 2.1.1

gnu/glibc 2.1.1.6

... and 5 more

Published May 02, 2013

Tracked Since Feb 18, 2026