CVE-2007-0180

Опубликовано: 11 янв. 2007

Источник: nvd

CVSS2: 7.6

EPSS Низкий

Описание

Stack-based buffer overflow in EF Commander 5.75 allows user-assisted attackers to execute arbitrary code via a crafted ISO file containing a file within several nested directories, which produces a large filename that triggers the overflow.

Ссылки

http://osvdb.org/32660
http://secunia.com/advisories/23659
Patch
Vendor Advisory
http://vuln.sg/efcommander575-en.html
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/21969
https://exchange.xforce.ibmcloud.com/vulnerabilities/31365
http://osvdb.org/32660
http://secunia.com/advisories/23659
Patch
Vendor Advisory
http://vuln.sg/efcommander575-en.html
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/21969
https://exchange.xforce.ibmcloud.com/vulnerabilities/31365

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ef_software:ef_commander:5.75:*:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01257

Низкий

7.6 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9f6h-vgr3-wpx3

github

почти 4 года назад