CVE-2007-1536: file 4.20 fixes a heap overflow in that can result in arbitrary code execution

Severity: Critical

CVSS Score: 9.3

Integer underflow in the file_printf function in the "file" program before 4.20 allows user-assisted attackers to execute arbitrary code via a file that triggers a heap-based buffer overflow.