CVE-2007-2062

Опубликовано: 18 апр. 2007

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Stack-based buffer overflow in VCDGear 3.55 and 3.56 BETA allows user-assisted remote attackers to execute arbitrary code via a long FILE argument in a CUE file.

Ссылки

http://secunia.com/advisories/24884
Vendor Advisory
http://www.securityfocus.com/archive/1/465725/100/0/threaded
http://www.securityfocus.com/bid/23475
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/33642
https://www.exploit-db.com/exploits/3727
http://secunia.com/advisories/24884
Vendor Advisory
http://www.securityfocus.com/archive/1/465725/100/0/threaded
http://www.securityfocus.com/bid/23475
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/33642
https://www.exploit-db.com/exploits/3727

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:vcdgear:vcdgear:3.55:*:*:*:*:*:*:*

cpe:2.3:a:vcdgear:vcdgear:3.56_beta:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.22843

Средний

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-p768-9j7f-q2v5

github

почти 4 года назад