NVD

Id
56588  
Name
CVE-2007-4463  
Description
The Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to cause a denial of service (unhandled exception) via an invalid RVA address function pointer in (1) an IMAGE_THUNK_DATA structure, involving the (a) OriginalFirstThunk and (b) FirstThunk IMAGE_IMPORT_DESCRIPTOR fields, or (2) the AddressOfNames IMAGE_EXPORT_DIRECTORY field in a PE file.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-07  
Published
2007-08-21  
Modified Date
2008-11-15  
Seq
2007-4463  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
288321 56588 CVE-2007-4463 http://blog.hispasec.com/lab/230  View
288322 56588 CVE-2007-4463 http://blog.hispasec.com/lab/advisories/adv_Fileinfo-2_09_multiple_vulnerabilities.txt  View
288323 56588 CVE-2007-4463 3044  View
288324 56588 CVE-2007-4463 20070820 [HISPASEC] Fileinfo 2.0.9 plugin for Total Commander multiple vulnerabilities  View
288325 56588 CVE-2007-4463 25373  View
288326 56588 CVE-2007-4463 fileinfo-multiple-pe-dos(36126)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
53843 JVNDB-2007-002535 Total Commander の Fileinfo プラグインにおけるサービス運用妨害 (DoS) の脆弱性 Total Commander の Fileinfo プラグインには、サービス運用妨害 (例外未処理) 状態となる脆弱性が存在します。 CVE-2007-4463 27818 CVE-2007-4463 56588 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002535.html 2007-08-21 2012-06-26 View