CVE-2007-5590
Miranda < 0.7.1 - Remote Code Execution via Buffer Overflow
Title source: llmDescription
Multiple buffer overflows in Miranda before 0.7.1 allow remote attackers to execute arbitrary code via unspecified vectors involving (1) IRC options, (2) Jabber forms, and unspecified aspects of the (3) ICQ and (4) Yahoo! instant messaging functionality. NOTE: some of these details are obtained from third party information.
References (9)
Core 9
Core References
Product x_refsource_confirm
http://sourceforge.net/project/shownotes.php?group_id=94142&release_id=547866
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/41805
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/27287
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/41806
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/41807
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/41804
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/37291
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3539
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/26115
Scores
EPSS
0.0364
EPSS Percentile
88.3%
Details
CWE
CWE-119
Status
published
Products (1)
miranda-im/miranda
< 0.7.0
Published
Oct 19, 2007
Tracked Since
Feb 18, 2026