Lucene search

[email protected]CVE-2007-0855

HistoryFeb 08, 2007 - 6:28 p.m.

CVE-2007-0855

2007-02-0818:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

2007

0855

buffer overflow

rarlabs unrar

winrar

remote code execution

nvd

7.8 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.086 Low

EPSS

Percentile

94.4%

JSON

Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR and possibly other products, allows user-assisted remote attackers to execute arbitrary code via a crafted, password-protected archive.

CPENameOperatorVersion
rarlab:unrarrarlab unrareq3.61
rarlab:unrarrarlab unrareq3.60

CPE	Name	Operator	Version
rarlab:unrar	rarlab unrar	eq	3.61
rarlab:unrar	rarlab unrar	eq	3.60

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=472

osvdb.org/33124

secunia.com/advisories/24077

secunia.com/advisories/24165

security.gentoo.org/glsa/glsa-200702-04.xml

securitytracker.com/id?1017593

www.novell.com/linux/security/advisories/2007_5_sr.html

www.securityfocus.com/bid/22447

www.vupen.com/english/advisories/2007/0523

exchange.xforce.ibmcloud.com/vulnerabilities/32357

7.8 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.086 Low

EPSS

Percentile

94.4%

JSON

Related for CVE-2007-0855

nessus5 prion1 debiancve1 ubuntucve1 openvas6 freebsd1 gentoo1 securityvulns1