CVE Vulnerability

CVE-2007-2217

Kodak Image Viewer in Microsoft Windows 2000 SP4, and in some cases XP SP2 and Server 2003 SP1 and SP2, allows remote attackers to execute arbitrary code via crafted image files that trigger memory corruption, as demonstrated by a certain .tif (TIFF) file.

9.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.us-cert.gov/cas/techalerts/TA07-282A.html US Government Resource
http://www.kb.cert.org/vuls/id/180345 US Government Resource
http://www.securityfocus.com/bid/25909 Exploit Patch
http://securitytracker.com/id?1018784
http://secunia.com/advisories/27092 Vendor Advisory
http://www.vupen.com/english/advisories/2007/3435 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/36799
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1481
https://www.exploit-db.com/exploits/4584
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-055
http://www.securityfocus.com/archive/1/482366/100/0/threaded
Configurations

Configuration 1
Information

Published : 2007-10-09 10:17

Updated : 2018-10-16 04:42

NVD link : CVE-2007-2217

Mitre link : CVE-2007-2217

Products Affected
No products.
CWE
CWE-94