Vulnerability Details : CVE-2007-0796
Blue Coat Systems WinProxy 6.1a and 6.0 r1c, and possibly earlier, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long HTTP CONNECT request, which triggers heap corruption.
Vulnerability category: Execute codeDenial of service
Products affected by CVE-2007-0796
- cpe:2.3:a:bluecoat:winproxy:6.1:r1a:*:*:*:*:*:*
- cpe:2.3:a:bluecoat:winproxy:6.0:r1c:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-0796
4.18%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 88 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-0796
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2007-0796
-
http://www.vupen.com/english/advisories/2007/0482
-
http://www.securityfocus.com/bid/22393
-
http://secunia.com/advisories/24049
-
http://securitytracker.com/id?1017586
-
http://osvdb.org/33097
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/32204
-
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=471
Patch;Vendor Advisory
Jump to