CVE-2007-4045

Related Files

Mandriva Linux Security Advisory 2008-036

Posted Feb 6, 2008

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Wei Wang found that the SNMP discovery backend in CUPS did not correctly calculate the length of strings. If a user could be tricked into scanning for printers, a remote attacker could send a specially crafted packet and possibly execute arbitrary code. As well, the fix for CVE-2007-0720 in MDKSA-2007:086 caused another denial of service regression within SSL handling.

tags | advisory, remote, denial of service, arbitrary

systems | linux, mandriva

advisories | CVE-2007-4045, CVE-2007-5849

SHA-256 | ecabb41b8b78285be0640a5a66957a87738180a417d3ecba60aedebac3f4919e

Download | Favorite | View

Gentoo Linux Security Advisory 200712-14

Posted Dec 19, 2007

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200712-14 - Wei Wang (McAfee AVERT Research) discovered an integer underflow in the asn1_get_string() function of the SNMP backend, leading to a stack-based buffer overflow when handling SNMP responses (CVE-2007-5849). Elias Pipping (Gentoo) discovered that the alternate pdftops filter creates temporary files with predictable file names when reading from standard input (CVE-2007-6358). Furthermore, the resolution of a Denial of Service vulnerability covered in GLSA 200703-28 introduced another Denial of Service vulnerability within SSL handling (CVE-2007-4045). Versions less than 1.3.5 are affected.

tags | advisory, denial of service, overflow

systems | linux, gentoo

advisories | CVE-2007-4045, CVE-2007-5849, CVE-2007-6358

SHA-256 | e011fd7e491b8a5fc40987640696d58b66059540e40b69f7a72cd19ab51fbdf6

Download | Favorite | View