CVE-2007-5542
Miranda IM 0.6.8 - Remote Code Execution via Crafted Yahoo! Messenger Packet
Title source: llmDescription
Stack-based buffer overflow in Miranda IM 0.6.8 allows remote attackers to execute arbitrary code via a crafted Yahoo! Messenger packet. NOTE: this might overlap CVE-2007-5590.
References (4)
Core 4
Core References
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/26115
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.org/0710-advisories/mirandaim-overflows.txt
Mailing List mailing-list
x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2007-October/057935.html
Various Sources x_refsource_misc
http://www.secureworks.com/research/threats/miranda/
Scores
EPSS
0.0395
EPSS Percentile
89.3%
Details
CWE
CWE-119
Status
published
Products (1)
miranda-im/miranda_im
0.6.8
Published
Mar 18, 2009
Tracked Since
Feb 18, 2026