CVE-2007-2888

Scores

EPSS

0.815high81.5%

0%20%40%60%80%100%

Percentile: 81.5%

CVSS

7.6high2.0

0246810

CVSS Score: 7.6/10

All CVSS Scores

CVSS 2.0

7.6

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Description

Stack-based buffer overflow in UltraISO 8.6.2.2011 and earlier allows user-assisted remote attackers to execute arbitrary code via a long FILE string (filename) in a .cue file, a related issue to CVE-2007-2761. NOTE: some details are obtained from third party information.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.

Learn more about Scaner-VS 7

Sources

nvd

Exploits

Exploit ID: 16627

Source: exploitdb

URL: https://www.exploit-db.com/exploits/16627

Exploit ID: 3978

Source: exploitdb

URL: https://www.exploit-db.com/exploits/3978

Exploit ID: 4001

Source: exploitdb

URL: https://www.exploit-db.com/exploits/4001

Exploit ID: 4002

Source: exploitdb

URL: https://www.exploit-db.com/exploits/4002

Vulnerable Software (1)

Type: Configuration

Vendor: *

Product: ultraiso

Operating System: * * *

Trait:

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:a:ezb_systems:ultraiso:*:*:*:*:*:*:*:*",      "versionEndIncluding": "8.6.2.2011",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd

End of list

Russian Vulnerability Scanner Database

CVE-2007-2888

Scores

EPSS

CVSS

All CVSS Scores

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact

Description

Scaner-VS 7 — a modern vulnerability management solution

Sources

Exploits

Vulnerable Software (1)