Lucene search

[email protected]CVE-2007-2062

HistoryApr 18, 2007 - 3:19 a.m.

CVE-2007-2062

2007-04-1803:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2062

vcdgear

buffer overflow

remote code execution

security vulnerability

nvd

8.2 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.103 Low

EPSS

Percentile

94.9%

JSON

Stack-based buffer overflow in VCDGear 3.55 and 3.56 BETA allows user-assisted remote attackers to execute arbitrary code via a long FILE argument in a CUE file.

CPENameOperatorVersion
vcdgear:vcdgearvcdgeareq3.56_beta
vcdgear:vcdgearvcdgeareq3.55

CPE	Name	Operator	Version
vcdgear:vcdgear	vcdgear	eq	3.56_beta
vcdgear:vcdgear	vcdgear	eq	3.55

References

secunia.com/advisories/24884

www.securityfocus.com/archive/1/465725/100/0/threaded

www.securityfocus.com/bid/23475

exchange.xforce.ibmcloud.com/vulnerabilities/33642

www.exploit-db.com/exploits/3727

8.2 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.103 Low

EPSS

Percentile

94.9%

JSON

Related for CVE-2007-2062

securityvulns1 prion1