CVE-2007-3512

Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA "Extended Header Size" value in an LZH archive, a different issue than CVE-2007-3375.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/37802
http://park8.wakwak.com/~app/Lhaca/overflow.html
http://secunia.com/advisories/25797	Patch Vendor Advisory
http://vuln.sg/lhaca121-en.html	Patch
http://www.vupen.com/english/advisories/2007/2399
https://exchange.xforce.ibmcloud.com/vulnerabilities/35297

Configurations

Configuration 1 (hide)

cpe:2.3:a:wakwak:lhaca_file_archiver:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-07-03 10:30

Updated : 2024-02-28 11:01

NVD link : CVE-2007-3512

Mitre link : CVE-2007-3512

CVE.ORG link : CVE-2007-3512

JSON object : View

Products Affected

wakwak

lhaca_file_archiver

CWE

NVD-CWE-Other

{"id": "CVE-2007-3512", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2007-07-03T10:30:00.000", "references": [{"url": "http://osvdb.org/37802", "source": "cve@mitre.org"}, {"url": "http://park8.wakwak.com/~app/Lhaca/overflow.html", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/25797", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://vuln.sg/lhaca121-en.html", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/2399", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35297", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA \"Extended Header Size\" value in an LZH archive, a different issue than CVE-2007-3375."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en Lhaca File Archiver anterior a 1.22 permite a atacantes remotos con la intervenci\u00f3n del usuario ejecutar c\u00f3digo de su elecci\u00f3n mediante un valor grande de \"Tama\u00f1o de Cabecera Extendida\" LHA (Extended Header Size) en un archivo LZH, un problema diferente de CVE-2007-3375."}], "lastModified": "2017-07-29T01:32:20.347", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:wakwak:lhaca_file_archiver:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A5F710A-CFD0-49E7-8D7D-A4D408A2C574", "versionEndIncluding": "1.21"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}