CVE Vulnerability

CVE-2007-5590

Multiple buffer overflows in Miranda before 0.7.1 allow remote attackers to execute arbitrary code via unspecified vectors involving (1) IRC options, (2) Jabber forms, and unspecified aspects of the (3) ICQ and (4) Yahoo! instant messaging functionality. NOTE: some of these details are obtained from third party information.

6.8 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 6.4

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

Scope

References
Link Resource
http://sourceforge.net/project/shownotes.php?group_id=94142&release_id=547866
http://secunia.com/advisories/27287 Patch Vendor Advisory
http://www.securityfocus.com/bid/26115
http://osvdb.org/41804
http://osvdb.org/41807
http://osvdb.org/41806
http://osvdb.org/41805
http://www.vupen.com/english/advisories/2007/3539
https://exchange.xforce.ibmcloud.com/vulnerabilities/37291
Configurations

Configuration 1

cpe:2.3:a:miranda-im:miranda:*:*:*:*:*:*:*:*
Information

Published : 2007-10-19 11:17

Updated : 2017-07-29 01:33

NVD link : CVE-2007-5590

Mitre link : CVE-2007-5590

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer