CVE

Id
27906  
CVE No.
CVE-2007-4549  
Status
Candidate  
Description
Multiple buffer overflows in ALPass 2.7 English and 3.02 Korean allow user-assisted remote attackers to execute arbitrary code via an ALPass DB (APW) file containing (1) a long file-key or (2) a "Site Information and Folder entry" with a ciphertext_length value much larger than the plaintext_length value.  
Phase
Assigned (20070827)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
287873 27906 CVE-2007-4549 MISC:http://vuln.sg/alpass27-en.html  View
287874 27906 CVE-2007-4549 BID:25435  View
287875 27906 CVE-2007-4549 URL:http://www.securityfocus.com/bid/25435  View
287876 27906 CVE-2007-4549 SECUNIA:26616  View
287877 27906 CVE-2007-4549 URL:http://secunia.com/advisories/26616  View
287878 27906 CVE-2007-4549 XF:alpass-alpass-db-file-bo(36235)  View
287879 27906 CVE-2007-4549 URL:http://xforce.iss.net/xforce/xfdb/36235  View
287880 27906 CVE-2007-4549 XF:alpass-apw-bo(36257)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
53860 JVNDB-2007-002552 Agares Media Arcadem の index.php における PHP リモートファイルインクルージョンの脆弱性 Agares Media Arcadem の index.php には、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2007-4551 27906 7.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002552.html  View