Lucene search
HistoryApr 11, 2007 - 1:19 a.m.
CVE-2007-1946
cve-2007-1946
integer overflow
windows explorer
microsoft windows xp
denial of service
remote attackers
arbitrary code
bmp image
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
High
0.141 Low
EPSS
Percentile
95.7%
Integer overflow in Windows Explorer in Microsoft Windows XP SP1 might allow user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large width dimension in a crafted BMP image, as demonstrated by w4intof.bmp.
Affected configurations
Node
microsoftwindows_xpsp1
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:windows_xp | microsoft windows xp | eq | * |
Related
prion
prion
Integer overflow
2007-04-11 01:19:00
cvelist
cvelist
CVE-2007-1946
2007-04-11 01:00:00
nvd
nvd
CVE-2007-1946
2007-04-11 01:19:00
nessus
nessus
freebsd
freebsd
p5-Imager -- possibly exploitable buffer overflow
2007-04-04 00:00:00
openvas
openvas
FreeBSD Ports: p5-Imager
2008-09-04 00:00:00
FreeBSD Ports: p5-Imager
2008-09-04 00:00:00
securityvulns
securityvulns
Multiple image viewers multiple security vulnerabilities
2007-11-02 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
High
0.141 Low
EPSS
Percentile
95.7%
Related for CVE-2007-1946