Lucene search
HistoryOct 30, 2007 - 7:46 p.m.
CVE-2007-5709
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
High
EPSS
0.213
Percentile
96.5%
Stack-based buffer overflow in Sony SonicStage CONNECT Player (CP) 4.3 allows remote attackers to execute arbitrary code via a long file name in an M3U file.
Affected configurations
Node
sonysonicstage_connect_playerMatch4.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sony | sonicstage_connect_player | 4.3 | cpe:2.3:a:sony:sonicstage_connect_player:4.3:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-5709
2007-10-30 19:00:00
jvn
jvn
JVN#66291445 SonicStage CP buffer overflow vulnerability
2007-12-04 00:00:00
prion
prion
Stack overflow
2007-10-30 19:46:00
exploitdb
exploitdb
Sony CONNECT Player 4.x - '.m3u' Local Stack Overflow
2007-10-29 00:00:00
cve
cve
CVE-2007-5709
2007-10-30 19:46:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
High
EPSS
0.213
Percentile
96.5%
Related for NVD:CVE-2007-5709