Lucene search

MitreCVE-2007-2852

HistoryMay 24, 2007 - 7:30 p.m.

CVE-2007-2852

2007-05-2419:30:00

mitre

web.nvd.nist.gov

cve-2007-2852

stack-based buffer overflows

eset nod32 antivirus

remote code execution

security vulnerability

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.147

Percentile

95.8%

JSON

Multiple stack-based buffer overflows in ESET NOD32 Antivirus before 2.70.37.0 allow remote attackers to execute arbitrary code during (1) delete/disinfect or (2) rename operations via a crafted directory name.

Affected configurations

Nvd

Node

eset_softwarenod32_antivirusMatch2.70.37.0

VendorProductVersionCPE
eset_softwarenod32_antivirus2.70.37.0cpe:2.3:a:eset_software:nod32_antivirus:2.70.37.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
eset_software	nod32_antivirus	2.70.37.0	cpe:2.3:a:eset_software:nod32_antivirus:2.70.37.0:::::::*

References

osvdb.org/36650

secunia.com/advisories/25375

securityreason.com/securityalert/2733

www.eset.com/support/news.php

www.inkatel.com/wp-content/uploads/2007/05/Advisory.txt

www.securityfocus.com/archive/1/469300/100/0/threaded

www.securityfocus.com/archive/1/469337/100/0/threaded

www.securityfocus.com/archive/1/469468/100/0/threaded

www.securityfocus.com/bid/24098

www.vupen.com/english/advisories/2007/1911

exchange.xforce.ibmcloud.com/vulnerabilities/34454

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.147

Percentile

95.8%

JSON

Related for CVE-2007-2852