Lucene search

[email protected]CVE-2007-2390

HistoryMay 24, 2007 - 10:30 p.m.

CVE-2007-2390

2007-05-2422:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2390

buffer overflow

ichat

apple

mac os x

denial of service

remote code execution

upnp

igd

nvd

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.07 Low

EPSS

Percentile

93.9%

JSON

Buffer overflow in iChat in Apple Mac OS X 10.3.9 and 10.4.9 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted UPnP Internet Gateway Device (IGD) packet.

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.4.9
apple:mac_os_xapple mac os xeq10.3.9

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.4.9
apple:mac_os_x	apple mac os x	eq	10.3.9

References

docs.info.apple.com/article.html?artnum=305530

lists.apple.com/archives/security-announce/2007/May/msg00004.html

secunia.com/advisories/25402

www.kb.cert.org/vuls/id/116100

www.osvdb.org/35141

www.securityfocus.com/bid/24144

www.securitytracker.com/id?1018119

www.vupen.com/english/advisories/2007/1939

exchange.xforce.ibmcloud.com/vulnerabilities/34502

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.07 Low

EPSS

Percentile

93.9%

JSON

Related for CVE-2007-2390

prion1 cert1 seebug1 nessus1