CVE-2007-2452 [中] | Memory Corruption（Findutils）

Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.

#	日期	舊 EPSS 分數	新 EPSS 分數	變化（新 − 舊）
1	2026-06-15	1.68%	2.23%	+0.55%
2	2026-01-21	1.61%	1.68%	+0.07%
3	2025-08-19	—	1.61%	—

日期

舊 EPSS 分數

新 EPSS 分數

變化（新 − 舊）

2026-06-15

1.68%

2.23%

+0.55%

2026-01-21

1.61%

1.68%

+0.07%

2025-08-19

—

1.61%

—

底座分	版本	嚴重度	向量	可利用性	影響	分數來源
6.0	2.0	MEDIUM	`AV:N/AC:M/Au:S/C:P/I:P/A:P` 點擊展開存取路徑 (AV:N) 只要路由可達，即可從遠端發動利用。存取複雜度 (AC:M) 需要若干有利條件，但不必「千年一遇」。認證 (AU:S) 突破一次認證邊界即可。機密性影響 (C:P) 機密性受到部分損害。完整性影響 (I:P) 完整性受到部分損害。可用性影響 (A:P) 可用性受到部分損害。	6.8	6.4	[email protected]

底座分

版本

嚴重度

向量

可利用性

影響

分數來源

6.0

2.0

MEDIUM

AV:N/AC:M/Au:S/C:P/I:P/A:P 點擊展開

存取路徑 (AV:N): 只要路由可達，即可從遠端發動利用。
存取複雜度 (AC:M): 需要若干有利條件，但不必「千年一遇」。
認證 (AU:S): 突破一次認證邊界即可。
機密性影響 (C:P): 機密性受到部分損害。
完整性影響 (I:P): 完整性受到部分損害。
可用性影響 (A:P): 可用性受到部分損害。

6.8

6.4

[email protected]

CVE-2007-2452 的 OS 追蹤

vendor	priority	summary	link
`debian`	low	CVE-2007-2452 low priority: Debian including 1 source packages (findutils), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2007-2452
`redhat`	—	—	https://access.redhat.com/security/cve/CVE-2007-2452
`suse`	medium	CVE-2007-2452 severity moderate: SUSE including 10 source package names (findutils-4.10.0-160000.2.2, findutils-4.4.0-38.24.11, …), 14 product×package rows across 8 product lines (SUSE Linux Enterprise Server 11 SP1, SUSE Linux Enterprise Server 11 SP2, … (8 product lines)): Fixed 14.	https://www.suse.com/security/cve/CVE-2007-2452/
`ubuntu`	negligible	CVE-2007-2452 negligible priority: Ubuntu including 1 source packages (findutils), 12 status rows across 12 suites (dapper, edgy, feisty, gutsy, hardy, intrepid, jaunty, karmic, lucid, maverick, natty, upstream): released 8, ignored 3, needs-triage 1.	https://ubuntu.com/security/CVE-2007-2452

CVE-2007-2452 的廠商評論（NVD）

Red Hat (2007-06-11T00:00:00)

Not vulnerable. Red Hat did not ship GNU locate in Red Hat Enterprise Linux 2.1, 3, 4, or 5. This issue does not affect the ’mlocate’ or ’slocate’ packages that are supplied with Red Hat Enterprise Linux.

CVE-2007-2452 的影響軟體 / 設定

廠商	產品	版本	原始 CPE
gnu	findutils	4.0	cpe:2.3:a:gnu:findutils:4.0:::::::*
gnu	findutils	4.1	cpe:2.3:a:gnu:findutils:4.1:::::::*
gnu	findutils	4.2.28	cpe:2.3:a:gnu:findutils:4.2.28:::::::*
gnu	findutils	4.2.29	cpe:2.3:a:gnu:findutils:4.2.29:::::::*
gnu	findutils	4.2.30	cpe:2.3:a:gnu:findutils:4.2.30:::::::*

CVE-2007-2452 的參考連結

URL	標籤
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02286083
http://osvdb.org/36827
http://secunia.com/advisories/25477	Patch Vendor Advisory
http://secunia.com/advisories/40551
http://securityreason.com/securityalert/2760
http://www.securityfocus.com/archive/1/470108/100/0/threaded
http://www.securityfocus.com/bid/24250	Patch
http://www.securitytracker.com/id?1018183
http://www.vupen.com/english/advisories/2007/2015
http://www.vupen.com/english/advisories/2010/1796
https://exchange.xforce.ibmcloud.com/vulnerabilities/34628

URL

標籤

http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02286083

http://osvdb.org/36827

http://secunia.com/advisories/25477

Patch Vendor Advisory

http://secunia.com/advisories/40551

http://securityreason.com/securityalert/2760

http://www.securityfocus.com/archive/1/470108/100/0/threaded

http://www.securityfocus.com/bid/24250

Patch

http://www.securitytracker.com/id?1018183