CVE-2007-0368

Michiel Broek Mbse-bbs - Buffer Overflow

Title source: rule

Description

Stack-based buffer overflow in mbse-bbs 0.70 and earlier allows local users to execute arbitrary code via a long string in the MBSE_ROOT environment variable.

Exploits (1)

exploitdb WORKING POC VERIFIED

by prdelka · clocallinux

https://www.exploit-db.com/exploits/3154

View Code ZIP pw:eip

References (5)

[Mailing List] http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/051859.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/31639

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3154

[Various Sources] http://www.mbse.eu/mbse/mbsebbs/index.html

[Exploit] http://www.securityfocus.com/bid/22112

Scores

EPSS 0.0177

EPSS Percentile 82.7%

Details

Status published

Products (9)

michiel_broek/mbse-bbs 0.33.17

michiel_broek/mbse-bbs 0.33.18

michiel_broek/mbse-bbs 0.33.19

michiel_broek/mbse-bbs 0.33.20

michiel_broek/mbse-bbs 0.35.7

michiel_broek/mbse-bbs 0.36

michiel_broek/mbse-bbs 0.38

michiel_broek/mbse-bbs 0.60

michiel_broek/mbse-bbs 0.70

Published Jan 19, 2007

Tracked Since Feb 18, 2026