Lucene search

[email protected]CVE-2007-2823

HistoryMay 22, 2007 - 9:30 p.m.

CVE-2007-2823

2007-05-2221:30:00

[email protected]

web.nvd.nist.gov

cve-2007-2823

buffer overflow

ht editor

remote code execution

security vulnerability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.128 Low

EPSS

Percentile

95.5%

JSON

Multiple buffer overflows in HT Editor before 2.0.6 might allow remote attackers to execute arbitrary code via unspecified vectors, possibly involving the editor display width. NOTE: some of the details were obtained from third party information.

Affected configurations

NVD

Node

ht_editorht_editorRange≤2.0.5

ht_editorht_editorMatch0.5.0

ht_editorht_editorMatch0.8.0

CPENameOperatorVersion
ht_editor:ht_editorht editorle2.0.5
ht_editor:ht_editorht editoreq0.5.0
ht_editor:ht_editorht editoreq0.8.0

CPE	Name	Operator	Version
ht_editor:ht_editor	ht editor	le	2.0.5
ht_editor:ht_editor	ht editor	eq	0.5.0
ht_editor:ht_editor	ht editor	eq	0.8.0

References

hte.cvs.sourceforge.net/hte/HT%20Editor/ChangeLog?revision=1.104

osvdb.org/36514

secunia.com/advisories/25363

www.securityfocus.com/bid/24091

www.vupen.com/english/advisories/2007/1907

exchange.xforce.ibmcloud.com/vulnerabilities/34423

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.128 Low

EPSS

Percentile

95.5%

JSON

Related for CVE-2007-2823

nvd1 cvelist1 prion1