CVE-2007-5590

Miranda < 0.7.1 - Remote Code Execution via Buffer Overflow

Title source: llm
STIX 2.1

Description

Multiple buffer overflows in Miranda before 0.7.1 allow remote attackers to execute arbitrary code via unspecified vectors involving (1) IRC options, (2) Jabber forms, and unspecified aspects of the (3) ICQ and (4) Yahoo! instant messaging functionality. NOTE: some of these details are obtained from third party information.

References (9)

Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/41805
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27287
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/41806
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/41807
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/41804
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/37291
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3539
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/26115

Scores

EPSS 0.0364
EPSS Percentile 88.3%

Details

CWE
CWE-119
Status published
Products (1)
miranda-im/miranda < 0.7.0
Published Oct 19, 2007
Tracked Since Feb 18, 2026