Lucene search

[email protected]CVE-2007-1568

HistoryMar 21, 2007 - 9:19 p.m.

CVE-2007-1568

2007-03-2121:19:00

[email protected]

web.nvd.nist.gov

cve-2007-1568

daansystems

newsreactor

buffer overflow

remote code execution

yenc

yencode

nvd.

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.134 Low

EPSS

Percentile

95.6%

JSON

Stack-based buffer overflow in DaanSystems NewsReactor 20070220.21 allows remote attackers to execute arbitrary code via a yEnc (yEncode) encoded article with a long filename.

Affected configurations

NVD

Node

daansystemsnewsreactorMatch2007-02-21

CPENameOperatorVersion
daansystems:newsreactordaansystems newsreactoreq2007-02-21

CPE	Name	Operator	Version
daansystems:newsreactor	daansystems newsreactor	eq	2007-02-21

References

osvdb.org/34035

secunia.com/advisories/24487

www.vupen.com/english/advisories/2007/0934

www.exploit-db.com/exploits/3462

www.exploit-db.com/exploits/3463

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.134 Low

EPSS

Percentile

95.6%

JSON

Related for CVE-2007-1568

cvelist1 prion1 nvd1 securityvulns1