| Vulnerability Name: | CVE-2007-1523 (CCN-33463) | ||||||||
| Assigned: | 2007-01-29 | ||||||||
| Published: | 2007-01-29 | ||||||||
| Updated: | 2013-08-28 | ||||||||
| Summary: | Heap-based buffer overflow in the kernel in NetBSD 3.0, certain versions of FreeBSD and OpenBSD, and possibly other BSD derived operating systems allows local users to have an unknown impact. Note: this information is based upon a vague pre-advisory with no actionable information. Details will be updated after 20070329. | ||||||||
| CVSS v3 Severity: | 4.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P) 6.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:U/RC:UR)
3.0 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:P/I:P/A:P/E:U/RL:U/RC:UR)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2007-1523 Source: CCN Type: Kernel Wars Blog, Monday, January 29, 2007 Kernel Wars Source: MISC Type: Vendor Advisory http://kernelwars.blogspot.com/2007/01/alive.html Source: OSVDB Type: UNKNOWN 34593 Source: MISC Type: Vendor Advisory http://www.blackhat.com/html/bh-europe-07/bh-eu-07-speakers.html#Eriksson Source: CCN Type: The NetBSD Project Web site The NetBSD Project Source: CCN Type: OSVDB ID: 34593 Multiple BSD Unspecified Kernel Overflow Source: BID Type: UNKNOWN 22945 Source: CCN Type: BID-22945 NetBSD Kernel Unspecified Local Buffer Overflow Vulnerability Source: XF Type: UNKNOWN netbsd-unspecified-bo(33463) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||