CVE-2009-0537: Integer Overflow
First published: Mon Mar 09 2009(Updated: )
Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and earlier and (2) Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service (application crash) via a deep directory tree, related to the fts_level structure member, as demonstrated by (a) du, (b) rm, (c) chmod, and (d) chgrp on OpenBSD; and (e) SearchIndexer.exe on Vista Enterprise.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Interix | =6.0 | |
| Openbsd Openbsd | <=4.4 | |
| Openbsd Openbsd | =2.0 | |
| Openbsd Openbsd | =2.1 | |
| Openbsd Openbsd | =2.2 | |
| Openbsd Openbsd | =2.3 | |
| Openbsd Openbsd | =2.4 | |
| Openbsd Openbsd | =2.5 | |
| Openbsd Openbsd | =2.6 | |
| Openbsd Openbsd | =2.7 | |
| Openbsd Openbsd | =2.8 | |
| Openbsd Openbsd | =2.9 | |
| Openbsd Openbsd | =3.0 | |
| Openbsd Openbsd | =3.1 | |
| Openbsd Openbsd | =3.2 | |
| Openbsd Openbsd | =3.3 | |
| Openbsd Openbsd | =3.4 | |
| Openbsd Openbsd | =3.5 | |
| Openbsd Openbsd | =3.6 | |
| Openbsd Openbsd | =3.7 | |
| Openbsd Openbsd | =3.8 | |
| Openbsd Openbsd | =3.9 | |
| Openbsd Openbsd | =4.0 | |
| Openbsd Openbsd | =4.1 | |
| Openbsd Openbsd | =4.2 | |
| Openbsd Openbsd | =4.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://securityreason.com/achievement_securityalert/60
- http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/fts.c
- http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/fts.c.diff?r1=1.41%3Br2=1.42%3Bf=h
- http://www.securityfocus.com/archive/1/501505/100/0/threaded
- http://www.securityfocus.com/bid/34008
- http://www.securitytracker.com/id?1021818
- https://www.exploit-db.com/exploits/8163
- http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/fts.c.diff?r1=1.41;r2=1.42;f=h
- collector/nvd-api
- collector/nvd-historical
- collector/nvd-index
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- vendor/microsoft
- canonical/microsoft interix
- version/microsoft interix/6.0
- vendor/openbsd
- canonical/openbsd openbsd
- version/openbsd openbsd/4.4
- version/openbsd openbsd/2.0
- version/openbsd openbsd/2.1
- version/openbsd openbsd/2.2
- version/openbsd openbsd/2.3
- version/openbsd openbsd/2.4
- version/openbsd openbsd/2.5
- version/openbsd openbsd/2.6
- version/openbsd openbsd/2.7
- version/openbsd openbsd/2.8
- version/openbsd openbsd/2.9
- version/openbsd openbsd/3.0
- version/openbsd openbsd/3.1
- version/openbsd openbsd/3.2
- version/openbsd openbsd/3.3
- version/openbsd openbsd/3.4
- version/openbsd openbsd/3.5
- version/openbsd openbsd/3.6
- version/openbsd openbsd/3.7
- version/openbsd openbsd/3.8
- version/openbsd openbsd/3.9
- version/openbsd openbsd/4.0
- version/openbsd openbsd/4.1
- version/openbsd openbsd/4.2
- version/openbsd openbsd/4.3