VDB
CVE-2007-2881
CVE-2007-2881
PUBLISHED
CVSS 10 CRITICAL
Multiple stack-based buffer overflows in the SOCKS proxy support (sockd) in Sun Java Web Proxy Server before 4.0.5 allow remote attackers to execute arbitrary code via crafted packets during protocol negotiation.
EPSS 69.11% · 98.7th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
69.11%
98.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| sun | java_system_web_proxy_server | 0 |
| n/a | n/a | * |
Timeline
- May 29, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Sep 23, 2023 EPSS Score
References
- ADV-2007-1957 vdb
- sun-java-web-socks-bo(34524) vdb
- 25405 third-party-advisory
- 35841 vdb
- VU#746889 third-party-advisory
- 102927 vendor-advisory
- 20070525 Sun Java System Web Proxy Multiple Buffer Overflow Vulnerabilities third-party-advisory
- 1018130 vdb
- 24165 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2007-2881 advisory