CVE-2007-2452

CVE-2007-2452 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.

Learn more about our Web Application Penetration Testing UK.