JVN/CVE Demo: Nvdinfos

NVD

Id: 56887
Name: CVE-2007-4771
Description: Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack. NOTE: some of these details are obtained from third party information.
Reject
CVSS Version: 2
CVSS Score: 9.3
Severity: High
CVSS Base Score: 9.3
CVSS Impact Subscore: 10
CVSS Exploit Subscore: 8.6
CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Pub Date: 2017-01-07
Published: 2008-01-28
Modified Date: 2011-03-07
Seq: 2007-4771

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
290295	56887	CVE-2007-4771	SUSE-SR:2008:005	View
290296	56887	CVE-2007-4771	oval:org.mitre.oval:def:10507	View
290297	56887	CVE-2007-4771	oval:org.mitre.oval:def:5431	View
290298	56887	CVE-2007-4771	RHSA-2008:0090	View
290299	56887	CVE-2007-4771	GLSA-200803-20	View
290300	56887	CVE-2007-4771	GLSA-200805-16	View
290301	56887	CVE-2007-4771	1019269	View
290302	56887	CVE-2007-4771	[icu-support] 20080122 ICU Patch for bugs in Regular Expressions	View
290303	56887	CVE-2007-4771	231641	View
290304	56887	CVE-2007-4771	233922	View
290305	56887	CVE-2007-4771	http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0043	View
290306	56887	CVE-2007-4771	DSA-1511	View
290307	56887	CVE-2007-4771	MDVSA-2008:026	View
290308	56887	CVE-2007-4771	SUSE-SA:2008:023	View
290309	56887	CVE-2007-4771	http://www.openoffice.org/security/cves/CVE-2007-4770.html	View
290310	56887	CVE-2007-4771	http://www.openoffice.org/security/cves/CVE-2007-5745.html	View
290311	56887	CVE-2007-4771	20080206 rPSA-2008-0043-1 icu	View
290312	56887	CVE-2007-4771	27455	View
290313	56887	CVE-2007-4771	USN-591-1	View
290314	56887	CVE-2007-4771	ADV-2008-0282	View
290315	56887	CVE-2007-4771	ADV-2008-0807	View
290316	56887	CVE-2007-4771	ADV-2008-1375	View
290317	56887	CVE-2007-4771	libicu-dointerval-bo(39936)	View
290318	56887	CVE-2007-4771	https://bugzilla.redhat.com/show_bug.cgi?id=429025	View
290319	56887	CVE-2007-4771	https://issues.rpath.com/browse/RPL-2199	View
290320	56887	CVE-2007-4771	FEDORA-2008-1036	View
290321	56887	CVE-2007-4771	FEDORA-2008-1076	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
45742	JVNDB-2008-001052	ICU の libicu におけるヒープベースのバッファオーバーフローの脆弱性	International Components for Unicode (ICU) には、livicu の regexcmp.cpp における doInterval() 関数に、正規表現のバックトラッキングのデータ処理に不備があり、ヒープベースのバッファオーバーフローが発生する脆弱性が存在します。	CVE-2007-4771	28126	CVE-2007-4771	56887	10		http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001052.html	2008-01-22	2008-04-15	View

Message	Memory use
Component initialization	1.38 MB
Controller action start	1.48 MB
Controller render start	2.32 MB
View render complete	15.84 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.73
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	325.02
Event: Controller.beforeRender	4.10
» Processing toolbar data	4.02
Rendering View	568.23
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	558.79
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	7.35
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	3.77
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/56887
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/56887
Remote Port	2914
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	52.15.143.11
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	52.15.143.11
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	52.15.143.11
Unique Id	aBAYWlDgW93tR4cH2NtOQQAAAYg
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	52.15.143.11
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	52.15.143.11
Redirect Unique Id	aBAYWlDgW93tR4cH2NtOQQAAAYg
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	52.15.143.11
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	52.15.143.11
Redirect Redirect Unique Id	aBAYWlDgW93tR4cH2NtOQQAAAYg
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1745885274.6889
Request Time	1745885274

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files