CVE-2007-2616

CWE-79Cross-site Scripting (XSS)8 documents7 sources
Severity
10.0CRITICAL
EPSS
50.0%
top 2.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Netmail
Timeline
PublishedMay 11
Latest updateMay 1

Description

Stack-based buffer overflow in the SSL version of the NMDMC.EXE service in Novell NetMail 3.52e FTF2 and probably earlier allows remote attackers to execute arbitrary code via a crafted request.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDnovell/netmail7 versions+6

Patches

Patch: download.novell.comPatch: secunia.comPatch: www.securityfocus.com

🔴Vulnerability Details

3
GHSA
GHSA-m623-5pqp-69vm: Stack-based buffer overflow in the SSL version of the NMDMC2022-05-01
GHSA
Apache Tomcat XSS In Accept-Language Headers2022-05-01
CVEList
CVE-2007-2616: Stack-based buffer overflow in the SSL version of the NMDMC2007-05-11

📋Vendor Advisories

3
Red Hat
mod_autoindex XSS2007-09-13
Red Hat
tomcat accept-language xss flaw2007-06-06
Apache
Apache httpd: CVE-2008-0005

💬Community

1
Bugzilla
CVE-2007-1358 tomcat accept-language xss flaw2007-06-19
CVE-2007-2616 (CRITICAL CVSS 10) | Stack-based buffer overflow in the | cvebase.io