Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2007-5133
HistorySep 27, 2007 - 7:17 p.m.

CVE-2007-5133

2007-09-2719:17:00
CWE-189
CWE-399
[email protected]
web.nvd.nist.gov
29
microsoft
windows
explorer
png
vulnerability
denial of service
cpu consumption
nvd
cve-2007-5133

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.9 Medium

AI Score

Confidence

High

0.221 Low

EPSS

Percentile

96.5%

JSON

Microsoft Windows Explorer (explorer.exe) allows user-assisted remote attackers to cause a denial of service (CPU consumption) via a certain PNG file with a large tEXt chunk that possibly triggers an integer overflow in PNG chunk size handling, as demonstrated by badlycrafted.png.

Affected configurations

NVD
Node
microsoftwindows_2003_serveritanium
OR
microsoftwindows_2003_serverstd
OR
microsoftwindows_2003_serverwed
OR
microsoftwindows_2003_serverx64
OR
microsoftwindows_2003_serverx64-std
OR
microsoftwindows_2003_serverxp-64bit
OR
microsoftwindows_2003_servergold
OR
microsoftwindows_2003_servergolditanium
OR
microsoftwindows_2003_servergoldstd
OR
microsoftwindows_2003_servergoldwed
OR
microsoftwindows_2003_servergoldx64
OR
microsoftwindows_2003_servergoldx64-std
OR
microsoftwindows_2003_serverr2
OR
microsoftwindows_2003_serverr2std
OR
microsoftwindows_2003_serverr2wed
OR
microsoftwindows_2003_serverr2x64
OR
microsoftwindows_2003_serverr2x64-std
OR
microsoftwindows_2003_serversp1
OR
microsoftwindows_2003_serversp1std
OR
microsoftwindows_2003_serversp1wed
OR
microsoftwindows_2003_serversp2
OR
microsoftwindows_2003_serversp2itanium
OR
microsoftwindows_2003_serversp2std
OR
microsoftwindows_2003_serversp2wed
OR
microsoftwindows_2003_serversp2x64
OR
microsoftwindows_2003_serverMatch-
OR
microsoftwindows_server_2003
OR
microsoftwindows_server_2003-
OR
microsoftwindows_server_2003sp1
OR
microsoftwindows_server_2003sp2
OR
microsoftwindows_vista
OR
microsoftwindows_vistabusiness
OR
microsoftwindows_vistaenterprise
OR
microsoftwindows_vistahome_basic
OR
microsoftwindows_vistahome_premium
OR
microsoftwindows_vistastarter
OR
microsoftwindows_vistaultimate
OR
microsoftwindows_vistax64
OR
microsoftwindows_vistax64-business
OR
microsoftwindows_vistax64-home_basic
OR
microsoftwindows_vistagold
OR
microsoftwindows_vistagoldx64
OR
microsoftwindows_vistaMatch-
OR
microsoftwindows_xp64bit
OR
microsoftwindows_xpembedded
OR
microsoftwindows_xpibm_oem
OR
microsoftwindows_xpmedia_center
OR
microsoftwindows_xppro
OR
microsoftwindows_xptablet_pc
OR
microsoftwindows_xpx64
OR
microsoftwindows_xpgold
OR
microsoftwindows_xpgoldembedded
OR
microsoftwindows_xpgoldmedia_center
OR
microsoftwindows_xpgoldpro
OR
microsoftwindows_xpgoldtablet_pc
OR
microsoftwindows_xpsp1
OR
microsoftwindows_xpsp164bit
OR
microsoftwindows_xpsp1embedded
OR
microsoftwindows_xpsp1ibm_oem
OR
microsoftwindows_xpsp1media_center
OR
microsoftwindows_xpsp1pro
OR
microsoftwindows_xpsp1tablet_pc
OR
microsoftwindows_xpsp2
OR
microsoftwindows_xpsp2embedded
OR
microsoftwindows_xpsp2media_center
OR
microsoftwindows_xpsp2pro
OR
microsoftwindows_xpsp2tablet_pc
OR
microsoftwindows_xpsp2x64
OR
microsoftwindows_xpMatch-
Node
3ware3dm_disk_management_softwaresp1
OR
3ware3dm_disk_management_softwaresp2

Related

cvelist 1
prion 1
nvd 1
cvelist
cvelist
CVE-2007-5133
2007-09-27 19:00:00
prion
prion
Integer overflow
2007-09-27 19:17:00
nvd
nvd
CVE-2007-5133
2007-09-27 19:17:00

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.9 Medium

AI Score

Confidence

High

0.221 Low

EPSS

Percentile

96.5%

JSON
Related for CVE-2007-5133
cvelist1prion1nvd1