Lucene search

K

CertccCVELIST:CVE-2007-4474

HistoryDec 27, 2007 - 10:00 p.m.

CVE-2007-4474

2007-12-2722:00:00

certcc

www.cve.org

7.3 High

AI Score

Confidence

Low

0.971 High

EPSS

Percentile

99.8%

Multiple stack-based buffer overflows in the IBM Lotus Domino Web Access ActiveX control, as provided by inotes6.dll, inotes6w.dll, dwa7.dll, and dwa7w.dll, in Domino 6.x and 7.x allow remote attackers to execute arbitrary code, as demonstrated by an overflow from a long General_ServerName property value when calling the InstallBrowserHelperDll function in the Upload Module in the dwa7.dwa7.1 control in dwa7w.dll 7.0.34.1.

References

lists.grok.org.uk/pipermail/full-disclosure/2007-December/059233.html

osvdb.org/40954

secunia.com/advisories/28184

www.kb.cert.org/vuls/id/963889

www.securityfocus.com/bid/26972

www.securitytracker.com/id?1019138

www.vupen.com/english/advisories/2007/4296

exchange.xforce.ibmcloud.com/vulnerabilities/39175

www.exploit-db.com/exploits/4818

www.exploit-db.com/exploits/4820

www.exploit-db.com/exploits/5111

7.3 High

AI Score

Confidence

Low

0.971 High

EPSS

Percentile

99.8%

Related for CVELIST:CVE-2007-4474

packetstorm4 securityvulns4 exploitpack3 cve1 d21 prion1 seebug4 cert1 saint4 nessus1 nvd1 checkpoint_advisories1 exploitdb3