VDB
CVE-2007-5037
CVE-2007-5037
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Buffer overflow in the inotifytools_snprintf function in src/inotifytools.c in the inotify-tools library before 3.11 allows context-dependent attackers to execute arbitrary code via a long filename.
EPSS 1.94% · 83.8th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
1.94%
83.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| inotify | inotify-tools | 0 |
Timeline
- Sep 24, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 40563 vdb
- 27616 third-party-advisory
- http://sourceforge.net/project/shownotes.php?release_id=540277&group_id=171752 url
- 25724 vdb
- FEDORA-2007-3074 vendor-advisory
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=443913 url
- 28221 third-party-advisory
- DSA-1440 vendor-advisory
- 26825 third-party-advisory
- inotifytools-inotifytoolssnprintf-bo(36687) vdb
- https://nvd.nist.gov/vuln/detail/CVE-2007-5037 advisory