NVD

Id
53838  
Name
CVE-2007-1654  
Description
Buffer overflow in the Ne7sshSftp::addOpenHandle function in ne7ssh_sftp.cpp in NetSieben SSH Library (ne7ssh) before 1.2.1 allows user-assisted remote SFTP servers to cause a denial of service (crash) or possibly execute arbitrary code via multiple file transfers, related to multiple open file handles in SFTP (1) put and (2) get operations.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-03-23  
Modified Date
2012-11-05  
Seq
2007-1654  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
272817 53838 CVE-2007-1654 http://netsieben.com/files/CHANGELOG  View
272818 53838 CVE-2007-1654 ne7ssh-addopenhandle-bo(33504)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
54886 JVNDB-2007-003578 NetSieben SSH Library の Ne7sshSftp::addOpenHandle 関数におけるバッファオーバーフローの脆弱性 NetSieben SSH Library (ne7ssh) の ne7ssh_sftp.cpp の Ne7sshSftp::addOpenHandle 関数には、SFTP (1) put および (2) get 操作内の open ファイルハンドラに関する処理に不備があるため、バッファオーバーフローの脆弱性が存在します。 CVE-2007-1654 25009 CVE-2007-1654 53838 9.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-003578.html 2007-03-23 2012-09-25 View