Lucene search

[email protected]CVE-2007-3929

HistoryJul 21, 2007 - 12:30 a.m.

CVE-2007-3929

2007-07-2100:30:00

CWE-416

[email protected]

web.nvd.nist.gov

cve-2007-3929

bittorrent

opera

vulnerability

user-assisted remote attack

execute arbitrary code

crafted header

torrent file

7.3 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.062 Low

EPSS

Percentile

93.5%

JSON

Use-after-free vulnerability in the BitTorrent support in Opera before 9.22 allows user-assisted remote attackers to execute arbitrary code via a crafted header in a torrent file, which leaves a dangling pointer to an invalid object.

CPENameOperatorVersion
opera:opera_browseropera opera browserlt9.22

CPE	Name	Operator	Version
opera:opera_browser	opera opera browser	lt	9.22

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=564

secunia.com/advisories/26138

secunia.com/advisories/26545

security.gentoo.org/glsa/glsa-200708-17.xml

www.novell.com/linux/security/advisories/2007_15_sr.html

www.opera.com/support/search/view/862/

www.securityfocus.com/bid/24970

www.securitytracker.com/id?1018431

www.vupen.com/english/advisories/2007/2584

exchange.xforce.ibmcloud.com/vulnerabilities/35509

7.3 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.062 Low

EPSS

Percentile

93.5%

JSON

Related for CVE-2007-3929

prion1 ubuntucve1 openvas4 nessus3 freebsd1 gentoo1