Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-4770
HistoryJan 29, 2008 - 12:00 a.m.

CVE-2007-4770

2008-01-2900:00:00
CWE-399
[email protected]
web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

9.5 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.7%

JSON

libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.

Affected configurations

NVD
Node
icu-projectinternational_components_for_unicodeRange3.8.1c\/c\+\+

References

Related

debiancve 1
cvelist 1
cve 1
ubuntucve 1
prion 1
oraclelinux 1
nessus 16
openvas 27
gentoo 2
ubuntu 1
fedora 2
securityvulns 2
centos 1
redhat 1
debian 1
osv 1
suse 1
ibm 1
debiancve
debiancve
CVE-2007-4770
2008-01-29 00:00:00
cvelist
cvelist
CVE-2007-4770
2008-01-28 23:00:00
cve
cve
CVE-2007-4770
2008-01-29 00:00:00
ubuntucve
ubuntucve
CVE-2007-4770
2008-01-29 00:00:00
prion
prion
Design/Logic Flaw
2008-01-29 00:00:00
oraclelinux
oraclelinux
Important: icu security update
2008-01-25 00:00:00
nessus
nessus
Oracle Linux 5 : icu (ELSA-2008-0090)
2013-07-12 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : icu vulnerabilities (USN-591-1)
2008-03-26 00:00:00
Mandriva Linux Security Advisory : icu (MDVSA-2008:026)
2009-04-23 00:00:00
openvas
openvas
Mandriva Update for icu MDVSA-2008:026 (icu)
2009-04-09 00:00:00
Solaris Update for International Components for Unicode 119811-05
2009-06-03 00:00:00
Fedora Update for icu FEDORA-2008-1036
2009-02-16 00:00:00
gentoo
gentoo
International Components for Unicode: Multiple vulnerabilities
2008-03-11 00:00:00
OpenOffice.org: Multiple vulnerabilities
2008-05-14 00:00:00
ubuntu
ubuntu
libicu vulnerabilities
2008-03-24 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: icu-3.6-20.fc7
2008-01-27 07:21:37
[SECURITY] Fedora 8 Update: icu-3.8-5.fc8
2008-01-27 07:13:29
securityvulns
securityvulns
icu / libicu multiple security vulnerabilities
2008-01-27 00:00:00
[ MDVSA-2008:026 ] - Updated icu packages fix vulnerabilities
2008-01-27 00:00:00
centos
centos
icu, libicu security update
2008-01-25 14:57:12
redhat
redhat
(RHSA-2008:0090) Important: icu security update
2008-01-25 00:00:00
debian
debian
[SECURITY] [DSA 1511-1] New libicu packages fix multiple problems
2008-03-03 21:14:41
osv
osv
icu - multiple problems
2008-03-03 00:00:00
suse
suse
local privilege escalation in OpenOffice_org
2008-04-18 09:57:35
ibm
ibm
Security Bulletin: TADDM is vulnerable to a denial of service due to vulnerabilities in ICU4J Library
2023-04-26 14:21:56

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

9.5 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.7%

JSON
Related for NVD:CVE-2007-4770
debiancve1cvelist1cve1ubuntucve1prion1oraclelinux1nessus16openvas27gentoo2ubuntu1fedora2securityvulns2centos1redhat1debian1osv1suse1ibm1