FreeBSD : findutils -- GNU locate heap buffer overrun (7ca2a709-103b-11dc-8e82-00001cd613f9)

This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

James Youngman reports :

When GNU locate reads filenames from an old-format locate database,
they are read into a fixed-length buffer allocated on the heap.
Filenames longer than the 1026-byte buffer can cause a buffer overrun.
The overrunning data can be chosen by any person able to control the
names of filenames created on the local system. This will normally
include all local users, but in many cases also remote users (for
example in the case of FTP servers allowing uploads).

See also :

http://lists.gnu.org/archive/html/bug-findutils/2007-06/msg00000.html
http://www.nessus.org/u?3d6261f5

Solution :

Update the affected package.

Risk factor :

Medium / CVSS Base Score : 6.0
(CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 25381 (freebsd_pkg_7ca2a709103b11dc8e8200001cd613f9.nasl)

Bugtraq ID:

CVE ID: CVE-2007-2452

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now