Security Advisory

CVE-2009-5029

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-05-02 14:00:00

Last updated 2024-08-07 07:24:53

Assigner redhat

State PUBLISHED

Description

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.

← Browse all CVEs View on cve.org ↗