NVD

Id
53456  
Name
CVE-2007-1253  
Description
Eval injection vulnerability in the (a) kmz_ImportWithMesh.py Script for Blender 0.1.9h, as used in (b) Blender before 2.43, allows user-assisted remote attackers to execute arbitrary Python code by importing a crafted (1) KML or (2) KMZ file.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-03-03  
Modified Date
2011-03-07  
Seq
2007-1253  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
270615 53456 CVE-2007-1253 GLSA-200704-19  View
270616 53456 CVE-2007-1253 22770  View
270617 53456 CVE-2007-1253 1017714  View
270618 53456 CVE-2007-1253 ADV-2007-0798  View
270619 53456 CVE-2007-1253 blender-kml-kmz-command-execution(32778)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
52957 JVNDB-2007-001649 kmz_ImportWithMesh.py Script for Blender における任意のPython コードを実行される脆弱性 (a) kmz_ImportWithMesh.py Script for Blender には、(b) Blender で使用される際、Eval インジェクションが発生するため、任意の Python コードを実行される脆弱性が存在します。 CVE-2007-1253 24608 CVE-2007-1253 53456 9.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001649.html 2007-03-03 2012-06-26 View