CVE-2007-0940
published 2007-05-08CVE-2007-0940: Unspecified vulnerability in the Cryptographic API Component Object Model Certificates ActiveX control (CAPICOM.dll) in Microsoft CAPICOM and BizTalk Server…
PriorityP357critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
75.68%
99.5th percentile
Unspecified vulnerability in the Cryptographic API Component Object Model Certificates ActiveX control (CAPICOM.dll) in Microsoft CAPICOM and BizTalk Server 2004 SP1 and SP2 allows remote attackers to execute arbitrary code via unspecified vectors, aka the "CAPICOM.Certificates Vulnerability."
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | biztalk_server | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title DELETE
suricata·2010-07-30·CVSS 6.8
CVE-2007-1572 [MEDIUM] ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title DELETE
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title DELETE
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title DELETE"; flow:established,to_server; http.uri; content:"/search.asp?"; nocase; content:"title="; nocase; content:"DELETE"; nocase; content:"FROM"; nocase; distance:0; reference:cve,CVE-2007-1572; reference:url,www.frsirt.com/english/advisories/2007/0940; classtype:web-application-attack; sid:2004155; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique
Suricata
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title UPDATE
suricata·2010-07-30·CVSS 6.8
CVE-2007-1572 [MEDIUM] ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title UPDATE
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title UPDATE
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title UPDATE"; flow:established,to_server; http.uri; content:"/search.asp?"; nocase; content:"title="; nocase; content:"UPDATE"; nocase; content:"SET"; nocase; distance:0; reference:cve,CVE-2007-1572; reference:url,www.frsirt.com/english/advisories/2007/0940; classtype:web-application-attack; sid:2004157; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique_
Suricata
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title UNION SELECT
suricata·2010-07-30·CVSS 6.8
CVE-2007-1572 [MEDIUM] ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title UNION SELECT
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title UNION SELECT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title UNION SELECT"; flow:established,to_server; http.uri; content:"/search.asp?"; nocase; content:"title="; nocase; content:"UNION"; nocase; content:"SELECT"; nocase; distance:0; reference:cve,CVE-2007-1572; reference:url,www.frsirt.com/english/advisories/2007/0940; classtype:web-application-attack; sid:2004153; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mi
Suricata
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title INSERT
suricata·2010-07-30·CVSS 6.8
CVE-2007-1572 [MEDIUM] ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title INSERT
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title INSERT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title INSERT"; flow:established,to_server; http.uri; content:"/search.asp?"; nocase; content:"title="; nocase; content:"INSERT"; nocase; content:"INTO"; nocase; distance:0; reference:cve,CVE-2007-1572; reference:url,www.frsirt.com/english/advisories/2007/0940; classtype:web-application-attack; sid:2004154; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique
Suricata
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title SELECT
suricata·2010-07-30·CVSS 6.8
CVE-2007-1572 [MEDIUM] ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title SELECT
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title SELECT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title SELECT"; flow:established,to_server; http.uri; content:"/search.asp?"; nocase; content:"title="; nocase; content:"SELECT"; nocase; content:"FROM"; nocase; distance:0; reference:cve,CVE-2007-1572; reference:url,www.frsirt.com/english/advisories/2007/0940; classtype:web-application-attack; sid:2004152; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique
Suricata
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title ASCII
suricata·2010-07-30·CVSS 6.8
CVE-2007-1572 [MEDIUM] ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title ASCII
ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title ASCII
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS JGBBS SQL Injection Attempt -- search.asp title ASCII"; flow:established,to_server; http.uri; content:"/search.asp?"; nocase; content:"title="; nocase; content:"ASCII("; nocase; content:"SELECT"; nocase; distance:0; reference:cve,CVE-2007-1572; reference:url,www.frsirt.com/english/advisories/2007/0940; classtype:web-application-attack; sid:2004156; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique
No public exploits indexed.
Bugzilla
CVE-2007-4574 EM64T local DoS
bugzilla·2007-09-20·CVSS 4.7
CVE-2007-4574 [MEDIUM] CVE-2007-4574 EM64T local DoS
CVE-2007-4574 EM64T local DoS
The RHEL kernel was missing some stack unwinder fixes which leads to an
incorrect CS bit being set, and a kernel OOps. This can be triggered by an
unprivileged local user on a EM64T architecture system.
Note this doesn't affect upstream which contains a different fix.
More details, fix, and reproducer in bz#213313
Marking private until update is released.
Discussion:
removing embargo
---
This issue has been addressed in following products:
Red Hat Linux Enterprise 5
Via RHSA-2007:0940 available at https://rhn.redhat.com/errata/RHSA-2007-0940.html
Bugzilla
CVE-2007-3513 Locally triggerable memory consumption in usblcd
bugzilla·2007-07-11·CVSS 4.9
CVE-2007-3513 [MEDIUM] CVE-2007-3513 Locally triggerable memory consumption in usblcd
CVE-2007-3513 Locally triggerable memory consumption in usblcd
usblcd currently has no way to limit memory consumption by fast writers. This is
a security problem, as it allows users with write access to this device to drive
the system into oom despite resource limits.
Discussion:
This issue has been addressed in following products:
Red Hat Linux Enterprise 5
Via RHSA-2007:0940 available at https://rhn.redhat.com/errata/RHSA-2007-0940.html
http://secunia.com/advisories/25185http://www.kb.cert.org/vuls/id/866305http://www.osvdb.org/34397http://www.securityfocus.com/archive/1/468871/100/200/threadedhttp://www.securityfocus.com/bid/23782http://www.securitytracker.com/id?1018016http://www.securitytracker.com/id?1018017http://www.us-cert.gov/cas/techalerts/TA07-128A.htmlhttp://www.vupen.com/english/advisories/2007/1713https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-028https://exchange.xforce.ibmcloud.com/vulnerabilities/32739https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1670http://secunia.com/advisories/25185http://www.kb.cert.org/vuls/id/866305http://www.osvdb.org/34397http://www.securityfocus.com/archive/1/468871/100/200/threadedhttp://www.securityfocus.com/bid/23782http://www.securitytracker.com/id?1018016http://www.securitytracker.com/id?1018017http://www.us-cert.gov/cas/techalerts/TA07-128A.htmlhttp://www.vupen.com/english/advisories/2007/1713https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-028https://exchange.xforce.ibmcloud.com/vulnerabilities/32739https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1670
2007-05-08
Published