This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor e2fsprogs Project First view 2019-09-24
Product e2fsprogs Last view 2020-01-08
Version 1.45.3 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:e2fsprogs_project:e2fsprogs

Activity : Overall

Related : CVE

  Date Alert Description
6.7 2020-01-08 CVE-2019-5188

A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.

6.7 2019-09-24 CVE-2019-5094

An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.

CWE : Common Weakness Enumeration

%idName
100% (2) CWE-787 Out-of-bounds Write

Snort® IPS/IDS

Date Description
2020-12-05 TRUFFLEHUNTER TALOS-2019-0973 attack attempt
RuleID : 52571 - Type : FILE-OTHER - Revision : 1
2020-12-05 TRUFFLEHUNTER TALOS-2019-0973 attack attempt
RuleID : 52570 - Type : FILE-OTHER - Revision : 1