CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
36.3%
Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace “{” character.
Vendor | Product | Version | CPE |
---|---|---|---|
debian | debian_linux | 2.1 | cpe:2.3:o:debian:debian_linux:2.1:*:*:*:*:*:*:* |
redhat | linux | * | cpe:2.3:o:redhat:linux:*:*:*:*:*:*:*:* |
redhat | linux | 6.2 | cpe:2.3:o:redhat:linux:6.2:*:*:*:*:*:*:* |
redhat | linux | 7.0 | cpe:2.3:o:redhat:linux:7.0:*:*:*:*:*:*:* |
redhat | linux | 7.1 | cpe:2.3:o:redhat:linux:7.1:*:*:*:*:*:*:* |
distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000447
download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-037-01
sources.redhat.com/ml/bug-glibc/2001-11/msg00109.html
www.ciac.org/ciac/bulletins/m-029.shtml
www.debian.org/security/2002/dsa-103
www.linux-mandrake.com/en/security/2001/MDKSA-2001-095.php3
www.linuxsecurity.com/advisories/other_advisory-1752.html
www.redhat.com/support/errata/RHSA-2001-160.html
www.securityfocus.com/archive/1/245956
www.securityfocus.com/bid/3707
www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0112-008
exchange.xforce.ibmcloud.com/vulnerabilities/7705