Vulnerability & Exploit Database

Displaying entries 1 - 10 of 27 in total

Results for: CVE-2009-5029 Back to search

SUSE Linux Security Vulnerability: CVE-2009-5029 Vulnerability

  • Severity: 7
  • Published: May 02, 2013

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

Gentoo Linux: CVE-2009-5029: GNU C Library: Multiple vulnerabilities Vulnerability

  • Severity: 7
  • Published: May 02, 2013

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

Cent OS: CVE-2009-5029: CESA-2012:0126 (glibc) Vulnerability

  • Severity: 7
  • Published: May 02, 2013

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

Amazon Linux AMI: Security patch for glibc (ALAS-2012-39) (multiple CVEs) Vulnerability

  • Severity: 7
  • Published: May 02, 2013

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

VMSA-2012-0018: Update to ESX glibc package (CVE-2009-5029) Vulnerability

  • Severity: 7
  • Published: January 04, 2013

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

VMSA-2012-0013: Update to ESX service console glibc RPM (CVE-2009-5029) Vulnerability

  • Severity: 7
  • Published: September 17, 2012

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

ELSA-2012-0126 Moderate: Oracle Linux glibc security update Vulnerability

  • Severity: 7
  • Published: February 14, 2012

** DISPUTED ** ldd in the GNU C Library (aka glibc or libc6) 2.13 and earlier allows local users to gain privileges via a Trojan horse executable file linked with a modified loader that omits certain LD_TRACE_LOADED_OBJECTS checks. NOTE: the GNU C Library vendor states "This is just nonsense. There are a gazillion other ways to introduc...

ELSA-2012-0125 Moderate: Oracle Linux glibc security and bug fix update Vulnerability

  • Severity: 7
  • Published: February 14, 2012

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a cr...

ELSA-2012-0058 Moderate: Oracle Linux glibc security and bug fix update Vulnerability

  • Severity: 7
  • Published: January 25, 2012

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

RHSA-2012:0058: glibc security and bug fix update Vulnerability

  • Severity: 7
  • Published: January 24, 2012

The glibc packages contain the standard C libraries used by multipleprograms on the system. These packages contain the standard C and thestandard math libraries. Without these two libraries, a Linux system cannotfunction properly.An integer overflow flaw, leading to a heap-based buffer overflow, wasfound in the way the glibc library read...