File

file

Vendor: File • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2007-2799 2File Sleuth Kit 2File The Sleuth Kith Apr 23, 2026 May 23, 2007 N/A· v4 N/A· v3 5.1 MEDIUM· v2 Integer overflow in the "file" program 4.20, when running on 32-bit systems, as used in products including The Sleuth Kit, might allow user-assisted attackers to execute arbitrary code via a large file that triggers an o...Show more Integer overflow in the "file" program 4.20, when running on 32-bit systems, as used in products including The Sleuth Kit, might allow user-assisted attackers to execute arbitrary code via a large file that triggers an overflow that bypasses an assert() statement. NOTE: this issue is due to an incorrect patch for CVE-2007-1536.Show less
CVE-2007-1536 1File 1File Apr 23, 2026 Mar 20, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Integer underflow in the file_printf function in the "file" program before 4.20 allows user-assisted attackers to execute arbitrary code via a file that triggers a heap-based buffer overflow.
CVE-2004-1304 3File GentooTrustix 3File LinuxSecure Linux Apr 16, 2026 Jan 10, 2005 N/A· v4 N/A· v3 10.0 HIGH· v2 Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF file.
CVE-2003-0102 2File Netbsd 2File Netbsd Apr 16, 2026 Mar 18, 2003 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).