Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2007-2799
Description:Integer overflow in the "file" program 4.20, when running on 32-bit systems, as used in products including The Sleuth Kit, might allow user-assisted attackers to execute arbitrary code via a large file that triggers an overflow that bypasses an assert() statement. NOTE: this issue is due to an incorrect patch for CVE-2007-1536.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2007-2799
BugTraq ID: 24146
Bugtraq: 20070524 FLEA-2007-0022-1: file (Google Search)
Debian Security Information: DSA-1343 (Google Search)
NETBSD Security Advisory: NetBSD-SA2008-001
RedHat Security Advisories: RHSA-2007:0391
SuSE Security Announcement: SUSE-SA:2007:040 (Google Search)
XForce ISS Database: file-assert-code-execution(34731)

© 1998-2021 E-Soft Inc. All rights reserved.