Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 09/03/2009 Updated: 07/11/2023

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

VMScore: 436

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and previous versions and (2) Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent malicious users to cause a denial of service (application crash) via a deep directory tree, related to the fts_level structure member, as demonstrated by (a) du, (b) rm, (c) chmod, and (d) chgrp on OpenBSD; and (e) SearchIndexer.exe on Vista Enterprise.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openbsd openbsd 4.1
openbsd openbsd 3.7
openbsd openbsd 2.8
openbsd openbsd 3.8
openbsd openbsd
openbsd openbsd 3.1
openbsd openbsd 3.3
openbsd openbsd 2.9
openbsd openbsd 2.1
openbsd openbsd 2.2
openbsd openbsd 3.9
openbsd openbsd 2.0
openbsd openbsd 2.7
openbsd openbsd 3.2
openbsd openbsd 2.4
openbsd openbsd 4.2
openbsd openbsd 3.6
openbsd openbsd 3.0
openbsd openbsd 4.0
openbsd openbsd 3.5
microsoft interix 6.0
openbsd openbsd 2.6
openbsd openbsd 4.3
openbsd openbsd 2.5
openbsd openbsd 2.3
openbsd openbsd 3.4

CWE-189 http://securityreason.com/achievement_securityalert/60 http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/fts.c http://www.securityfocus.com/bid/34008 http://www.securitytracker.com/id?1021818 https://www.exploit-db.com/exploits/8163 http://www.securityfocus.com/archive/1/501505/100/0/threaded http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/fts.c.diff?r1=1.41%3Br2=1.42%3Bf=h https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-0537

Vulnerability Summary

References

Vulmon Search

About

Products

Connect