Integer overflow in the "file" program 4.20, when running on 32-bit systems, as used in products including The Sleuth Kit, might allow user-assisted attackers to execute arbitrary code via a large file that triggers an overflow that bypasses an assert() statement. NOTE: this issue is due to an incorrect patch for CVE-2007-1536.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: freebsd
Published: 2007-05-23T21:00:00
Updated: 2024-08-07T13:49:57.399Z
Reserved: 2007-05-22T00:00:00
Link: CVE-2007-2799
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-05-23T21:30:00.000
Modified: 2024-11-21T00:31:41.420
Link: CVE-2007-2799
Redhat