CVE-2007-1677
NetBSD 2.0-4.0_BETA2 - Local Buffer Overflow in ISO Network Protocol Support
Title source: llmDescription
Multiple buffer overflows in the ISO network protocol support in the NetBSD kernel 2.0 through 4.0_BETA2, and NetBSD-current before 20070329, allow local users to execute arbitrary code via long parameters to certain functions, as demonstrated by a long sockaddr structure argument to the clnp_route function.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1017832
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/43596
Vendor Advisory vendor-advisory
x_refsource_netbsd
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-004.txt.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/23193
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/33381
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1159
Scores
EPSS
0.0005
EPSS Percentile
16.3%
Details
Status
published
Products (9)
navision_software/navision_financials_server
3.0
netbsd/netbsd
2.0
netbsd/netbsd
2.0.1
netbsd/netbsd
2.0.2
netbsd/netbsd
2.0.3
netbsd/netbsd
3.0.1
netbsd/netbsd
3.0.2
netbsd/netbsd
3.1 (3 CPE variants)
netbsd/netbsd
4.0 (3 CPE variants)
Published
Mar 30, 2007
Tracked Since
Feb 18, 2026