Lucene search

[email protected]NVD:CVE-2007-2741

HistoryMay 17, 2007 - 7:30 p.m.

CVE-2007-2741

2007-05-1719:30:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.044

Percentile

92.4%

JSON

Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file.

Affected configurations

Nvd

Node

littlecmslcmsRange≤1.14

littlecmslcmsMatch1.07

littlecmslcmsMatch1.08

littlecmslcmsMatch1.09

littlecmslcmsMatch1.10

littlecmslcmsMatch1.11

littlecmslcmsMatch1.12

littlecmslcmsMatch1.13

References

osvdb.org/36179

scary.beasts.org/security/CESA-2007-001.html

secunia.com/advisories/25294

secunia.com/advisories/27756

secunia.com/advisories/32282

www.mandriva.com/security/advisories?name=MDKSA-2007:238

www.novell.com/linux/security/advisories/2007_24_sr.html

www.securityfocus.com/bid/24001

www.ubuntu.com/usn/usn-652-1

www.vupen.com/english/advisories/2007/1837

exchange.xforce.ibmcloud.com/vulnerabilities/34331

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.044

Percentile

92.4%

JSON

Related for NVD:CVE-2007-2741

securityvulns2 ubuntucve2 nessus6 openvas8 prion2 cve2 cvelist2 redhatcve1 nvd1 ubuntu1 gentoo2