CVE-2007-6613

Currently unrated

Key Information:

Vendor: Gnu
Status: Libcdio
Vendor: CVE Published:; 3 January 2008

Summary

Stack-based buffer overflow in the print_iso9660_recurse function in iso-info (src/iso-info.c) in GNU Compact Disc Input and Control Library (libcdio) 0.79 and earlier allows context-dependent attackers to cause a denial of service (core dump) and possibly execute arbitrary code via a disk or image that contains a long joilet file name.

References

http://www.ubuntu.com/usn/usn-580-1

vendor-advisoryx_refsource_UBUNTU

http://secunia.com/advisories/29242

third-party-advisoryx_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=427197

x_refsource_CONFIRM

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 3, 2008
Vulnerability Reserved
Jan 3, 2008