VDB
CVE-2007-1397
CVE-2007-1397
PUBLISHED
CVSS 10 CRITICAL
Multiple stack-based buffer overflows in the (1) ExtractRnick and (2) decrypt_topic_332 functions in FiSH allow remote attackers to execute arbitrary code via long strings.
EPSS 34.94% · 97.1th percentile
Risk Scores
CVSS v2.0
10
EPSS Score
34.94%
97.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| fish | fish |
Timeline
- Mar 10, 2007 CVE Published
- Apr 18, 2011 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 17, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Jul 15, 2023 EPSS Score
- Oct 28, 2023 EPSS Score
References
- ADV-2007-0910 vdb
- 8216 third-party-advisory
- http://blogs.23.nu/ilja/stories/14493/ url
- 22880 vdb
- 24495 third-party-advisory
- fish-multiple-bo(32892) vdb
- https://nvd.nist.gov/vuln/detail/CVE-2007-1397 advisory
- http://blogs.23.nu/ilja/stories/14493 url