VDB
CVE-2007-2194
CVE-2007-2194
PUBLISHED
CVSS 10 CRITICAL
Stack-based buffer overflow in XnView 1.90.3 allows user-assisted remote attackers to execute arbitrary code via a crafted XPM file with a long section string. NOTE: some of these details are obtained from third party information.
EPSS 28.42% · 96.6th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
28.42%
96.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| gentoo | xnview | 1.90.3 |
Timeline
- Apr 24, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 35235 vdb
- 3777 exploit
- ADV-2007-1488 vdb
- 23625 vdb
- 24973 third-party-advisory
- GLSA-200707-06 vendor-advisory
- xnview-xpm-bo(33810) vdb
- 26006 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2007-2194 advisory