JVN/CVE Demo: Nvdinfos

NVD

Id: 52996
Name: CVE-2007-0776
Description: Heap-based buffer overflow in the _cairo_pen_init function in Mozilla Firefox 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to execute arbitrary code via a large stroke-width attribute in the clipPath element in an SVG file.
Reject
CVSS Version: 2
CVSS Score: 9.3
Severity: High
CVSS Base Score: 9.3
CVSS Impact Subscore: 10
CVSS Exploit Subscore: 8.6
CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Pub Date: 2017-01-07
Published: 2007-02-26
Modified Date: 2011-10-17
Seq: 2007-0776

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
267913	52996	CVE-2007-0776	FEDORA-2007-281	View
267914	52996	CVE-2007-0776	FEDORA-2007-293	View
267915	52996	CVE-2007-0776	FEDORA-2007-308	View
267916	52996	CVE-2007-0776	FEDORA-2007-309	View
267917	52996	CVE-2007-0776	HPSBUX02153	View
267918	52996	CVE-2007-0776	SUSE-SA:2007:019	View
267919	52996	CVE-2007-0776	GLSA-200703-04	View
267920	52996	CVE-2007-0776	GLSA-200703-18	View
267921	52996	CVE-2007-0776	SSA:2007-066-05	View
267922	52996	CVE-2007-0776	SSA:2007-066-04	View
267923	52996	CVE-2007-0776	SSA:2007-066-03	View
267924	52996	CVE-2007-0776	GLSA-200703-08	View
267925	52996	CVE-2007-0776	VU#551436	View
267926	52996	CVE-2007-0776	MDKSA-2007:052	View
267927	52996	CVE-2007-0776	http://www.mozilla.org/security/announce/2007/mfsa2007-01.html	View
267928	52996	CVE-2007-0776	SUSE-SA:2007:022	View
267929	52996	CVE-2007-0776	20070226 rPSA-2007-0040-1 firefox	View
267930	52996	CVE-2007-0776	20070303 rPSA-2007-0040-3 firefox thunderbird	View
267931	52996	CVE-2007-0776	22694	View
267932	52996	CVE-2007-0776	1017698	View
267933	52996	CVE-2007-0776	USN-428-1	View
267934	52996	CVE-2007-0776	USN-431-1	View
267935	52996	CVE-2007-0776	ADV-2007-0718	View
267936	52996	CVE-2007-0776	ADV-2007-0719	View
267937	52996	CVE-2007-0776	ADV-2008-0083	View
267938	52996	CVE-2007-0776	firefox-strokewidth-bo(32698)	View
267939	52996	CVE-2007-0776	https://bugzilla.mozilla.org/show_bug.cgi?id=360645	View
267940	52996	CVE-2007-0776	https://issues.rpath.com/browse/RPL-1081	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
51510	JVNDB-2007-000172	Mozilla Firefox の _cairo_pen_init() 関数におけるヒープオーバーフローの脆弱性	Mozilla Firefox の _cairo_pen_init() 関数には、過度に大きな値が stroke-width 属性に指定されている SVG ファイルを処理した際に、ヒープオーバーフローが発生する脆弱性が存在します。	CVE-2007-0776	24131	CVE-2007-0776	52996	7.5		http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000172.html	2007-02-23	2007-08-01	View

Message	Memory use
Component initialization	1.38 MB
Controller action start	1.49 MB
Controller render start	2.31 MB
View render complete	16.33 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	3.23
Event: Controller.initialize	0.02
Event: Controller.startup	0.07
Controller action	324.46
Event: Controller.beforeRender	4.46
» Processing toolbar data	4.37
Rendering View	590.86
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	579.62
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	9.24
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	3.97
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/52996
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/52996
Remote Port	11364
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	3.22.70.140
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	3.22.70.140
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	3.22.70.140
Unique Id	aA_0mlDgW93tR4cH2Nu8kwAAAak
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	3.22.70.140
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	3.22.70.140
Redirect Unique Id	aA_0mlDgW93tR4cH2Nu8kwAAAak
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	3.22.70.140
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	3.22.70.140
Redirect Redirect Unique Id	aA_0mlDgW93tR4cH2Nu8kwAAAak
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1745876122.0089
Request Time	1745876122

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files