Vulnerability Details : CVE-2007-1523

Heap-based buffer overflow in the kernel in NetBSD 3.0, certain versions of FreeBSD and OpenBSD, and possibly other BSD derived operating systems allows local users to have an unknown impact. NOTE: this information is based upon a vague pre-advisory with no actionable information. Details will be updated after 20070329.

Vulnerability category: Overflow

Published 2007-03-20 20:19:00

Updated 2013-08-28 05:28:33

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2007-1523

Probability of exploitation activity in the next 30 days: 0.21%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 58 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-1523

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	[email protected]
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2007-1523

http://kernelwars.blogspot.com/2007/01/alive.html

Vendor Advisory

CVEs referencing this url
http://www.blackhat.com/html/bh-europe-07/bh-eu-07-speakers.html#Eriksson

Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/22945

Products affected by CVE-2007-1523

Netbsd » Netbsd » Version: 3.0
cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:*
Matching versions