softmagic.c in file … and libmagic allows context-dependent
attackers to cause a denial of service (out-of-bounds memory access and
crash) via crafted offsets in the softmagic of a PE executable.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfile< 5.18UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	file	< 5.18	UNKNOWN

References

bugs.gw.com/view.php?id=31

nessus 37

openvas 37

veracode 4

prion 1

cve 1

checkpoint_advisories 1

ubuntucve 1

osv 4

nvd 1

ubuntu 2

cvelist 1

securityvulns 6

debian 4

debiancve 1

seebug 1

mageia 3

f5 2

fedora 8

amazon 2

gentoo 2

freebsd 1

freebsd_advisory 1

redhat 3

oraclelinux 2

centos 2

nessus

openSUSE Security Update : file (openSUSE-SU-2014:0435-1)

2014-06-13 00:00:00

Fedora 19 : file-5.11-13.fc19 (2014-3589)

2014-03-27 00:00:00

FreeBSD : file -- out-of-bounds access in search rules with offsets from input file (7e61a839-b714-11e3-8195-001966155bea)

2014-03-31 00:00:00

openvas

Ubuntu Update for file USN-2162-1

2014-04-08 00:00:00

Mageia: Security Advisory (MGASA-2014-0123)

2022-01-28 00:00:00

Ubuntu: Security Advisory (USN-2162-1)

2014-04-08 00:00:00

veracode

Denial Of Service (DoS) Through Out-of-Bounds Access

2018-08-13 18:00:16

Denial Of Service (DoS)

2019-05-02 05:04:17

Denial Of Service (DoS)

2019-05-02 05:04:16

prion

Out-of-bounds

2014-03-14 15:55:00

cve

CVE-2014-2270

2014-03-14 15:55:05

checkpoint_advisories

PHP Libmagic Portable Executable Out-Of-Bounds Memory Access (CVE-2014-2270)

2014-05-18 00:00:00

ubuntucve

CVE-2014-2270

2014-03-14 00:00:00

osv

file - several

2014-03-11 00:00:00

php5 - security update

2014-06-01 00:00:00

php5 - security update

2015-01-31 00:00:00

nvd

CVE-2014-2270

2014-03-14 15:55:05

ubuntu

file vulnerability

2014-04-07 00:00:00

PHP vulnerability

2014-04-07 00:00:00

cvelist

CVE-2014-2270

2014-03-14 15:00:00

securityvulns

[SECURITY] [DSA 2873-1] file security update

2014-03-13 00:00:00

file utility / libmagic / PHP DoS

2014-05-04 00:00:00

[ MDVSA-2014:059 ] php

2014-03-18 00:00:00

debian

[SECURITY] [DSA 2873-1] file security update

2014-03-11 21:09:54

[SECURITY] [DSA 2873-1] file security update

2014-03-11 21:09:54

[SECURITY] [DSA 2943-1] php5 security update

2014-06-01 08:38:03

debiancve

CVE-2014-2270

2014-03-14 15:55:05

seebug

PHP Fileinfo组件越界内存破坏漏洞

2014-03-12 00:00:00

mageia

Updated file packages fix CVE-2014-2270

2014-03-07 18:18:43

Updated php packages fix security vulnerabilities

2014-04-04 21:33:24

Updated php packages fix security vulnerabilities

2014-04-04 16:08:18

SOL15689 - Fine Free file vulnerabilites CVE-2014-1943 and CVE-2014-2270

2014-10-09 00:00:00

K15689 : Fine Free file vulnerabilites CVE-2014-1943 and CVE-2014-2270

2014-10-09 00:00:00

fedora

[SECURITY] Fedora 20 Update: file-5.14-17.fc20

2014-03-12 12:31:06

[SECURITY] Fedora 19 Update: file-5.11-13.fc19

2014-03-27 04:47:52

[SECURITY] Fedora 20 Update: file-5.14-20.fc20

2014-03-27 04:52:02

amazon

Medium: php54

2014-03-24 23:37:00

Important: php55

2014-03-24 23:37:00

gentoo

file: Denial of service

2015-03-16 00:00:00

PHP: Multiple vulnerabilities

2014-08-29 00:00:00

freebsd

FreeBSD -- Multiple vulnerabilities in file(1) and libmagic(3)

2014-06-24 00:00:00

freebsd_advisory

FreeBSD-SA-14:16.file

2014-06-24 00:00:00

redhat

(RHSA-2014:1606) Moderate: file security and bug fix update

2014-10-14 00:00:00

(RHSA-2014:1012) Moderate: php53 and php security update

2014-08-06 00:00:00

(RHSA-2014:1765) Important: php54-php security update

2014-10-30 00:00:00

oraclelinux

file security and bug fix update

2014-10-15 00:00:00

php53 and php security update

2014-08-06 00:00:00

centos

file, python security update

2014-10-20 18:08:44

php, php53 security update

2014-08-06 14:53:37

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.959 High

EPSS

Percentile

99.5%

JSON

Related for 7E61A839-B714-11E3-8195-001966155BEA