Lucene search

K
cve[email protected]CVE-2007-4995
HistoryOct 13, 2007 - 1:17 a.m.

CVE-2007-4995

2007-10-1301:17:00
CWE-189
web.nvd.nist.gov
843
cve-2007-4995
dtls
openssl 0.9.8
remote code execution
nvd

9.4 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.179 Low

EPSS

Percentile

96.0%

Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.

References

9.4 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.179 Low

EPSS

Percentile

96.0%