Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-1036

5 documents5 sources

Severity

7.2HIGH

EPSS

0.4%

top 39.46%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

GNU Findutils Slackware Slackware Linux

Timeline

PublishedAug 31

Latest updateApr 30

Description

GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDgnu/findutils4.0, 4.1+1

▶NVDslackware/slackware_linux7.1, 8.0+1

🔴Vulnerability Details

GHSA

GHSA-4846-269g-37mp: GNU locate in findutils 4↗2022-04-30

▶

CVEList

CVE-2001-1036: GNU locate in findutils 4↗2003-04-02

▶

💥Exploits & PoCs

Exploit-DB

GNU findutils 4.0/4.1 - Locate Arbitrary Command Execution↗2001-08-01

▶

📋Vendor Advisories

Red Hat

CVE-2007-2452: Heap-based buffer overflow in the visit_old_format function in locate/locate↗

▶