CVE-2007-5456
published 2007-10-14CVE-2007-5456: Microsoft Internet Explorer 7 and earlier allows remote attackers to bypass the "File Download - Security Warning" dialog box and download arbitrary .exe files…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
19.89%
97.1th percentile
Microsoft Internet Explorer 7 and earlier allows remote attackers to bypass the "File Download - Security Warning" dialog box and download arbitrary .exe files by placing a '?' (question mark) followed by a non-.exe filename after the .exe filename, as demonstrated by (1) .txt, (2) .cda, (3) .log, (4) .dif, (5) .sol, (6) .htt, (7) .itpc, (8) .itms, (9) .dvr-ms, (10) .dib, (11) .asf, (12) .tif, and unspecified other extensions, a different issue than CVE-2004-1331. NOTE: this issue might not cross privilege boundaries, although it does bypass an intended protection mechanism.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | <= 7 | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat5.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-47hh-2ggx-7r2j: Microsoft Internet Explorer 7 and earlier allows remote attackers to bypass the "File Download - Security Warning" dialog box and download arbitrary
ghsa_unreviewed·2022-05-01·CVSS 2.6
CVE-2007-5456 [LOW] CWE-94 GHSA-47hh-2ggx-7r2j: Microsoft Internet Explorer 7 and earlier allows remote attackers to bypass the "File Download - Security Warning" dialog box and download arbitrary
Microsoft Internet Explorer 7 and earlier allows remote attackers to bypass the "File Download - Security Warning" dialog box and download arbitrary .exe files by placing a '?' (question mark) followed by a non-.exe filename after the .exe filename, as demonstrated by (1) .txt, (2) .cda, (3) .log, (4) .dif, (5) .sol, (6) .htt, (7) .itpc, (8) .itms, (9) .dvr-ms, (10) .dib, (11) .asf, (12) .tif, and unspecified other extensions, a different issue than CVE-2004-1331. NOTE: this issue might not cross privilege boundaries, although it does bypass an intended protection mechanism.
Red Hat
CVE-2007-0770: GraphicsMagick buffer overflow
vendor_redhat·CVSS 5.1
CVE-2007-0770 [MEDIUM] CVE-2007-0770: GraphicsMagick buffer overflow
CVE-2007-0770: GraphicsMagick buffer overflow
Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c. NOTE: this issue is due to an incomplete patch for CVE-2006-5456.
Statement: Not vulnerable. Red Hat did not ship the incomplete patch for CVE-2006-5456 and is therefore not affected by this issue.
No detection rules found.
No public exploits indexed.
http://securityreason.com/securityalert/3222http://www.securityfocus.com/archive/1/482220/100/0/threadedhttp://www.securityfocus.com/archive/1/482248/100/0/threadedhttp://www.securityfocus.com/archive/1/482297/100/0/threadedhttp://www.securityfocus.com/archive/1/482314/100/0/threadedhttp://www.securityfocus.com/bid/26062http://securityreason.com/securityalert/3222http://www.securityfocus.com/archive/1/482220/100/0/threadedhttp://www.securityfocus.com/archive/1/482248/100/0/threadedhttp://www.securityfocus.com/archive/1/482297/100/0/threadedhttp://www.securityfocus.com/archive/1/482314/100/0/threadedhttp://www.securityfocus.com/bid/26062
2007-10-14
Published