Lucene search

[email protected]CVE-2007-2877

HistoryMay 29, 2007 - 8:30 p.m.

CVE-2007-2877

2007-05-2920:30:00

[email protected]

web.nvd.nist.gov

cve-2007-2877

buffer overflow

tcl

privilege escalation

nvd

6.8 Medium

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Buffer overflow in tcl/win/tclWinReg.c in Tcl (Tcl/Tk) before 8.5a6 allows local users to gain privileges via long registry key paths.

Affected configurations

NVD

Node

tcl_tktcl_tkRange≤8.5a5

CPENameOperatorVersion
tcl_tk:tcl_tktcl tkle8.5a5

CPE	Name	Operator	Version
tcl_tk:tcl_tk	tcl tk	le	8.5a5

References

osvdb.org/36528

secunia.com/advisories/25401

sourceforge.net/project/shownotes.php?group_id=10894&release_id=503937

sourceforge.net/tracker/index.php?func=detail&aid=1682211&group_id=10894&atid=110894

exchange.xforce.ibmcloud.com/vulnerabilities/34515

6.8 Medium

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2007-2877

prion1 cvelist1 nvd1