Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-0172 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Reiser Reiserfs

4 documents4 sources

Severity

7.2HIGHNVD

EPSS

0.7%

top 28.14%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Hans Reiser Reiserfs Suse Linux

Timeline

PublishedMar 26

Latest updateApr 30

Description

Buffer overflow in ReiserFS 3.5.28 in SuSE Linux allows local users to cause a denial of service and possibly execute arbitrary commands by via a long directory name.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDsuse/suse_linux7.0

▶NVDhans_reiser/reiserfs3.5.28

🔴Vulnerability Details

GHSA

GHSA-m4hx-q62w-4fvm: Buffer overflow in ReiserFS 3↗2022-04-30

▶

CVEList

CVE-2001-0172: Buffer overflow in ReiserFS 3↗2001-03-09

▶

💥Exploits & PoCs

Exploit-DB

ReiserFS 3.5.28 (Linux Kernel) - Code Execution / Denial of Service↗2001-01-09

▶