exploitDog

CVE-2007-5397

Опубликовано: 28 фев. 2008

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Heap-based buffer overflow in the activePDF Server service (aka APServer.exe) in activePDF Server 3.8.4 and 3.8.5.14, and possibly other versions before 3.8.6.16, allows remote attackers to execute arbitrary code via a packet with a size field that is less than the actual size of the data.

Ссылки

http://secunia.com/advisories/27371
Vendor Advisory
http://secunia.com/secunia_research/2007-87/advisory/
Vendor Advisory
http://www.securityfocus.com/bid/28013
http://secunia.com/advisories/27371
Vendor Advisory
http://secunia.com/secunia_research/2007-87/advisory/
Vendor Advisory
http://www.securityfocus.com/bid/28013

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:activepdf:server:*:*:*:*:*:*:*:*

Версия до 3.8.4 (включая)

cpe:2.3:a:activepdf:server:*:*:*:*:*:*:*:*

Версия до 3.8.5.14 (включая)

EPSS

Процентиль: 85%

0.02695

Низкий

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-w9m3-f92x-pgrv

github

почти 4 года назад

Heap-based buffer overflow in the activePDF Server service (aka APServer.exe) in activePDF Server 3.8.4 and 3.8.5.14, and possibly other versions before 3.8.6.16, allows remote attackers to execute arbitrary code via a packet with a size field that is less than the actual size of the data.

EPSS

Процентиль: 85%

0.02695

Низкий

7.5 High

CVSS2

Дефекты

CWE-119