Denial of Service Vulnerability in GNU Coreutils by Remote Attackers
CVE-2014-9471

Currently unrated

Key Information:

Vendor

Gnu
Status
Coreutils
Vendor
CVE Published:
16 January 2015

What is CVE-2014-9471?

The parse_datetime function in GNU Coreutils is susceptible to exploitation by remote attackers who can deliver crafted date strings to cause a denial of service or potentially execute arbitrary code. An example exploit involves manipulating the command-line arguments for tools like touch or date, leading to unexpected behavior or program crashes. Organizations using GNU Coreutils should ensure they are running the latest version to mitigate risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.mandriva.com/security/advisories?name=MDVSA-20...
vendor-advisoryx_refsource_MANDRIVA
http://advisories.mageia.org/MGASA-2015-0029.html
x_refsource_CONFIRM
http://www.openwall.com/lists/oss-security/2014/11/25/4
mailing-listx_refsource_MLIST

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.