Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-5740HistoryOct 31, 2007 - 4:46 p.m.
CVE-2007-5740
2007-10-3116:46:00
Debian Security Bug Tracker
security-tracker.debian.org
5
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.345 Low
EPSS
Percentile
97.1%
The format string protection mechanism in IMAPD for Perdition Mail Retrieval Proxy 1.17 and earlier allows remote attackers to execute arbitrary code via an IMAP tag with a null byte followed by a format string specifier, which is not counted by the mechanism.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | perdition | < 1.17.1-1 | perdition_1.17.1-1_all.deb |
| Debian | 11 | all | perdition | < 1.17.1-1 | perdition_1.17.1-1_all.deb |
| Debian | 999 | all | perdition | < 1.17.1-1 | perdition_1.17.1-1_all.deb |
| Debian | 13 | all | perdition | < 1.17.1-1 | perdition_1.17.1-1_all.deb |
Related
openvas
openvas
Debian Security Advisory DSA 1398-1 (perdition)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1398-1)
2008-01-17 00:00:00
FreeBSD Ports: perdition
2008-09-04 00:00:00
ubuntucve
ubuntucve
CVE-2007-5740
2007-10-31 00:00:00
debian
debian
[SECURITY] [DSA 1398-1] New perdition packages fix arbitrary code execution
2007-11-05 13:03:47
[SECURITY] [DSA 1398-1] New perdition packages fix arbitrary code execution
2007-11-05 13:03:47
prion
prion
Format string
2007-10-31 16:46:00
nessus
nessus
Perdition IMAPD IMAP Tag Remote Format String Arbitrary Code Execution
2007-11-01 00:00:00
FreeBSD : perdition -- str_vwrite format string vulnerability (617a4021-8bf0-11dc-bffa-0016179b2dd5)
2007-11-06 00:00:00
Debian DSA-1398-1 : perdition - format string error
2007-11-06 00:00:00
freebsd
freebsd
perdition -- str_vwrite format string vulnerability
2007-10-31 00:00:00
nvd
nvd
CVE-2007-5740
2007-10-31 16:46:00
cve
cve
CVE-2007-5740
2007-10-31 16:46:00
cvelist
cvelist
CVE-2007-5740
2007-10-31 16:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.345 Low
EPSS
Percentile
97.1%
Related for DEBIANCVE:CVE-2007-5740