CVE-2001-1036

Currently unrated

Key Information:

Vendor: Gnu
Status: Findutils
Vendor: CVE Published:; 31 August 2001

Summary

GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/6932

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/3127

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/200991

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability Reserved
Jan 31, 2002
Vulnerability published
Aug 31, 2001