CVE-2001-1036
published 2001-08-31CVE-2001-1036: GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an…
PriorityP428high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
0.90%
55.1th percentile
GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | findutils | < findutils 4.2.31-1 (bookworm) | findutils 4.2.31-1 (bookworm) |
| gnu | findutils | — | — |
| gnu | findutils | — | — |
| gnu | findutils | — | — |
| gnu | findutils | — | — |
| gnu | findutils | — | — |
| gnu | findutils | >= 0 < 4.2.31-1 | 4.2.31-1 |
| gnu | findutils | >= 0 < 4.2.31-1 | 4.2.31-1 |
| gnu | findutils | >= 0 < 4.2.31-1 | 4.2.31-1 |
| gnu | findutils | >= 0 < 4.2.31-1 | 4.2.31-1 |
| slackware | slackware_linux | — | — |
| slackware | slackware_linux | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2LOW
vendor_redhat7.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2007-2452: findutils - Heap-based buffer overflow in the visit_old_format function in locate/locate.c i...
vendor_debian·2007·CVSS 7.2
CVE-2007-2452 [HIGH] CVE-2007-2452: findutils - Heap-based buffer overflow in the visit_old_format function in locate/locate.c i...
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
Scope: local
bookworm: resolved (fixed in 4.2.31-1)
bullseye: resolved (fixed in 4.2.31-1)
forky: resolved (fixed in 4.2.31-1)
sid: resolved (fixed in 4.2.31-1)
trixie: resolved (fixed in 4.2.31-1)
Red Hat
CVE-2007-2452: Heap-based buffer overflow in the visit_old_format function in locate/locate
vendor_redhat·CVSS 7.2
CVE-2007-2452 [HIGH] CVE-2007-2452: Heap-based buffer overflow in the visit_old_format function in locate/locate
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
Statement: Not vulnerable. Red Hat did not ship GNU locate in Red Hat Enterprise Linux 2.1, 3, 4, or 5. This issue does not affect the mlocate or slocate packages that are supplied with Red Hat Enterprise Linux.
GHSA
GHSA-4cfr-8c5p-5jg6: Heap-based buffer overflow in the visit_old_format function in locate/locate
ghsa_unreviewed·2022-05-01·CVSS 7.2
CVE-2007-2452 [HIGH] GHSA-4cfr-8c5p-5jg6: Heap-based buffer overflow in the visit_old_format function in locate/locate
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
GHSA
GHSA-4846-269g-37mp: GNU locate in findutils 4
ghsa_unreviewed·2022-04-30
CVE-2001-1036 [HIGH] GHSA-4846-269g-37mp: GNU locate in findutils 4
GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory.
OSV
CVE-2007-2452: Heap-based buffer overflow in the visit_old_format function in locate/locate
osv·2007-06-04·CVSS 7.2
CVE-2007-2452 [HIGH] CVE-2007-2452: Heap-based buffer overflow in the visit_old_format function in locate/locate
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
No detection rules found.
No writeups or analysis indexed.
http://www.osvdb.org/5477http://www.securityfocus.com/archive/1/200991http://www.securityfocus.com/bid/3127https://exchange.xforce.ibmcloud.com/vulnerabilities/6932http://www.osvdb.org/5477http://www.securityfocus.com/archive/1/200991http://www.securityfocus.com/bid/3127https://exchange.xforce.ibmcloud.com/vulnerabilities/6932
2001-08-31
Published