Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 01/02/2007 Updated: 29/07/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Buffer overflow in the open_sty function in mkind.c for makeindex 2.14 in teTeX might allow user-assisted remote malicious users to overwrite files and possibly execute arbitrary code via a long filename. NOTE: other overflows exist but might not be exploitable, such as a heap-based overflow in the check_idx function.

Vulnerable Product	Search on Vulmon	Subscribe to Product
makeindex makeindex 2.14

NVD-CWE-Other https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=225491 http://www.securityfocus.com/bid/23872 https://issues.rpath.com/browse/RPL-1036 http://security.gentoo.org/glsa/glsa-200709-17.xml http://security.gentoo.org/glsa/glsa-200711-34.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:109 http://secunia.com/advisories/26982 http://security.gentoo.org/glsa/glsa-200805-13.xml http://secunia.com/advisories/30168 http://www.vupen.com/english/advisories/2007/1706 https://exchange.xforce.ibmcloud.com/vulnerabilities/32284 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-0650

Vulnerability Summary

References

Vulmon Search

About

Products

Connect