Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-0537 — Openbsd vulnerability

CWE-1895 documents5 sources

Severity

4.9MEDIUMNVD

EPSS

7.1%

top 8.48%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Openbsd Microsoft Interix

Timeline

PublishedMar 9

Latest updateMay 2

Description

Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and earlier and (2) Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service (application crash) via a deep directory tree, related to the fts_level structure member, as demonstrated by (a) du, (b) rm, (c) chmod, and (d) chgrp on OpenBSD; and (e) SearchIndexer.exe on Vista Enterprise.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages2 packages

▶NVDopenbsd/openbsd4.4+24

▶NVDmicrosoft/interix6.0

🔴Vulnerability Details

GHSA

GHSA-9fjq-qvpr-gcq2: Integer overflow in the fts_build function in fts↗2022-05-02

▶

CVEList

CVE-2009-0537: Integer overflow in the fts_build function in fts↗2009-03-09

▶

💥Exploits & PoCs

Exploit-DB

Libc - 'libc:fts_*()' Local Denial of Service↗2009-03-05

▶

📋Vendor Advisories

Debian

CVE-2009-0537: glibc - Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 a...↗2009

▶