CVE-2007-1074

NewsBin Pro 5.33-4.x - Buffer Overflow

Title source: llm

Description

Multiple buffer overflows in NewsBin Pro 5.33 and NewsBin Pro 4.x allow user-assisted remote attackers to execute arbitrary code via a long (1) DataPath or (2) DownloadPath attributed in a (a) NBI file, or (3) a long group field in a (b) NZB file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Marsu · clocalwindows

https://www.exploit-db.com/exploits/3349

View Code ZIP pw:eip

References (8)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/32608

[Third Party Advisory, VDB Entry] http://osvdb.org/33377

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/32598

[Exploit] http://www.securityfocus.com/bid/22652

[Vendor Advisory] http://secunia.com/advisories/24261

[Third Party Advisory, VDB Entry] http://osvdb.org/33378

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3349

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/0694

Scores

EPSS 0.2512

EPSS Percentile 96.2%

Details

Status published

Products (2)

dji/newsbin_pro 4.x

dji/newsbin_pro 5.33

Published Feb 22, 2007

Tracked Since Feb 18, 2026