|
File(1) Command File_PrintF Integer Underflow Vulnerability
The file(1) command is prone to an integer-underflow vulnerability because the command fails to adequately handle user-supplied data. An attacker can leverage this issue to corrupt heap memory and execute arbitrary code with the privileges of a user running the command. A successful attack may result in the compromise of affected computers. Failed attempts will likely cause denial-of-service conditions. Versions prior to 4.20 are vulnerable. |
|
|
Privacy Statement |
