Lucene search

[email protected]CVE-2007-0097

HistoryJan 05, 2007 - 6:28 p.m.

CVE-2007-0097

2007-01-0518:28:00

[email protected]

web.nvd.nist.gov

cve-2007-0097

buffer overflow

paiso.dll

conexware powerarchiver 2006

security vulnerability

iso file

arbitrary code execution

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.1%

JSON

Multiple stack-based buffer overflows in the (1) LoadTree and (2) ReadHeader functions in PAISO.DLL 1.7.3.0 (1.7.3 beta) in ConeXware PowerArchiver 2006 9.64.02 allow user-assisted attackers to execute arbitrary code via a crafted ISO file containing a file within several nested directories.

Affected configurations

NVD

Node

conexwarepowerarchiver_2006Match9.64.02

CPENameOperatorVersion
conexware:powerarchiver_2006conexware powerarchiver 2006eq9.64.02

CPE	Name	Operator	Version
conexware:powerarchiver_2006	conexware powerarchiver 2006	eq	9.64.02

References

marc.info/?l=full-disclosure&m=116791509125050&w=2

osvdb.org/32576

secunia.com/advisories/23559

vuln.sg/powarc964-en.html

www.securityfocus.com/archive/1/455892/100/0/threaded

www.vupen.com/english/advisories/2007/0041

exchange.xforce.ibmcloud.com/vulnerabilities/31263

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.1%

JSON

Related for CVE-2007-0097

nvd1 nessus1 cvelist1 securityvulns1 prion1