VDB
CVE-2007-4370
CVE-2007-4370
PUBLISHED
CVSS 7.5 HIGH
Multiple buffer overflows in the (1) client and (2) server in Racer 0.5.3 beta 5 allow remote attackers to execute arbitrary code via a long string to UDP port 26000.
EPSS 79.17% · 99.1th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
79.17%
99.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| racer | racer | 0.5.3 |
Timeline
- Aug 15, 2007 CVE Published
- Mar 20, 2009 PoC Published
- Sep 20, 2010 PoC Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 31, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
References
- 25297 vdb
- 4283 exploit
- 39601 vdb
- racer-message-bo(35991) vdb
- https://nvd.nist.gov/vuln/detail/CVE-2007-4370 advisory