Lucene search

[email protected]CVE-2007-3210

HistoryJun 14, 2007 - 7:30 p.m.

CVE-2007-3210

2007-06-1419:30:00

[email protected]

web.nvd.nist.gov

cve-2007-3210

stack-based buffer overflow

nptoken.mox

cellosoft tokens object

vitalize!

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

High

0.065 Low

EPSS

Percentile

93.8%

JSON

Stack-based buffer overflow in nptoken.mox in the Cellosoft Tokens Object 2.0.0.6 extension for Vitalize! allows remote attackers to execute arbitrary code via a long string argument to the RemoveChr method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD

Node

cellosoftcellosoft_tokens_objectMatch2.0.0.6

CPENameOperatorVersion
cellosoft:cellosoft_tokens_objectcellosoft cellosoft tokens objecteq2.0.0.6

CPE	Name	Operator	Version
cellosoft:cellosoft_tokens_object	cellosoft cellosoft tokens object	eq	2.0.0.6

References

osvdb.org/37235

secunia.com/advisories/25604

www.securityfocus.com/bid/24458

exchange.xforce.ibmcloud.com/vulnerabilities/34850

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

High

0.065 Low

EPSS

Percentile

93.8%

JSON

Related for CVE-2007-3210

prion1 nvd1 cvelist1