BID:25724 - inotify-tools C Library inotifytools_snfprintf() Local Buffer Overflow Vulnerability

inotify-tools C Library inotifytools_snfprintf() Local Buffer Overflow Vulnerability

BID:25724

Info

inotify-tools C Library inotifytools_snfprintf() Local Buffer Overflow Vulnerability

Bugtraq ID:	25724
Class:	Boundary Condition Error
CVE:	CVE-2007-5037
Remote:	No
Local:	Yes
Published:	Sep 19 2007 12:00AM
Updated:	Jan 03 2008 02:10PM
Credit:	The vendor disclosed this issue.
Vulnerable:	Redhat Fedora 7 inotify-tools inotify-tools 3.9 inotify-tools inotify-tools 3.8 inotify-tools inotify-tools 3.6 inotify-tools inotify-tools 3.5 inotify-tools inotify-tools 3.4 inotify-tools inotify-tools 3.3 inotify-tools inotify-tools 3.2 inotify-tools inotify-tools 3.10 inotify-tools inotify-tools 3.1 inotify-tools inotify-tools 3.0 inotify-tools inotify-tools 2.6 inotify-tools inotify-tools 2.5 inotify-tools inotify-tools 2.4 inotify-tools inotify-tools 2.3 inotify-tools inotify-tools 2.2 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia-64 Debian Linux 4.0 ia-32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0

Not Vulnerable:	inotify-tools inotify-tools 3.11

Discussion

inotify-tools C Library inotifytools_snfprintf() Local Buffer Overflow Vulnerability

The 'inotify-tools' C library is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.

Attackers can exploit this issue to execute arbitrary code with the privileges of the application using the library. Successful exploits can compromise affected applications and possibly the underlying computer. Failed exploit attempts will result in a denial of service.

Versions prior to inotify-tools 3.11 are vulnerable.

Exploit / POC

inotify-tools C Library inotifytools_snfprintf() Local Buffer Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

inotify-tools C Library inotifytools_snfprintf() Local Buffer Overflow Vulnerability

Solution:
The vendor released inotify-tools 3.11 to address this issue. Please see the references for more information.

inotify-tools inotify-tools 2.4

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 2.3

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.1

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.10

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.4

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.2

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.0

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.9

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.3

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 2.6

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.5

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.6

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 3.8

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 2.5

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

inotify-tools inotify-tools 2.2

inotify-tools inotify-tools-3.11.tar.gz
http://downloads.sourceforge.net/inotify-tools/inotify-tools-3.11.tar. gz?modtime=1190140834&big_mirror=0

References

inotify-tools C Library inotifytools_snfprintf() Local Buffer Overflow Vulnerability

References:

3.11 Release Notes (inotify-tools)
Vendor Homepage (inotify-tools)