Lucene search
MitreCVE-2007-4580HistoryAug 28, 2007 - 6:17 p.m.
CVE-2007-4580
2007-08-2818:17:00
CWE-787
mitre
web.nvd.nist.gov
28
cve-2007-4580
buffer underflow
redlight.sys
bufferzone 2.1
bufferzone 2.5
denial of service
crash
arbitrary code
code execution
vulnerability
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.5
Confidence
High
EPSS
0
Percentile
5.1%
Buffer underflow in redlight.sys in BufferZone 2.1 and 2.5 allows local users to cause a denial of service (crash) and possibly execute arbitrary code by sending a small buffer size value to the FsSetVolumeInformation IOCTL handler code with a FsSetDirectoryInformation subcode containing a large buffer.
Affected configurations
Node
bufferzonesecuritybufferzoneRange2.1–2.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bufferzonesecurity | bufferzone | * | cpe:2.3:a:bufferzonesecurity:bufferzone:*:*:*:*:*:*:*:* |
Related
prion
prion
Buffer overflow
2007-08-28 18:17:00
cvelist
cvelist
CVE-2007-4580
2007-08-28 18:00:00
nvd
nvd
CVE-2007-4580
2007-08-28 18:17:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.5
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2007-4580