Lucene search

[email protected]CVE-2007-2881

HistoryMay 29, 2007 - 8:30 p.m.

CVE-2007-2881

2007-05-2920:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2881

stack-based buffer overflows

socks proxy

sun java web proxy server

remote code execution

protocol negotiation

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.46 Medium

EPSS

Percentile

97.4%

JSON

Multiple stack-based buffer overflows in the SOCKS proxy support (sockd) in Sun Java Web Proxy Server before 4.0.5 allow remote attackers to execute arbitrary code via crafted packets during protocol negotiation.

CPENameOperatorVersion
sun:java_system_web_proxy_serversun java system web proxy serverle4.0.4

CPE	Name	Operator	Version
sun:java_system_web_proxy_server	sun java system web proxy server	le	4.0.4

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=536

osvdb.org/35841

secunia.com/advisories/25405

sunsolve.sun.com/search/document.do?assetkey=1-26-102927-1

www.kb.cert.org/vuls/id/746889

www.securityfocus.com/bid/24165

www.securitytracker.com/id?1018130

www.vupen.com/english/advisories/2007/1957

exchange.xforce.ibmcloud.com/vulnerabilities/34524

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.46 Medium

EPSS

Percentile

97.4%

JSON

Related for CVE-2007-2881

saint4 checkpoint_advisories2 prion1 cvelist1 cert1