Lucene search

[email protected]CVE-2007-6605

HistoryDec 31, 2007 - 8:46 p.m.

CVE-2007-6605

2007-12-3120:46:00

CWE-119

[email protected]

web.nvd.nist.gov

buffer overflow

skyfexclient.ocx

skyfex client

remote code execution

cve-2007-6605

activex control

8.7 High

AI Score

Confidence

Low

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.054 Low

EPSS

Percentile

93.1%

JSON

Buffer overflow in a certain ActiveX control in SkyFexClient.ocx 1.0.2.77 in SkyFex Client 1.0 allows remote attackers to execute arbitrary code via long strings in the first four arguments to the Start method.

CPENameOperatorVersion
skyfex:skyfex_clientskyfex skyfex clienteq1.0.2.77

CPE	Name	Operator	Version
skyfex:skyfex_client	skyfex skyfex client	eq	1.0.2.77

References

osvdb.org/39868

www.securityfocus.com/bid/27059

exchange.xforce.ibmcloud.com/vulnerabilities/39288

www.exploit-db.com/exploits/4801

8.7 High

AI Score

Confidence

Low

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.054 Low

EPSS

Percentile

93.1%

JSON

Related for CVE-2007-6605

prion1