CVE-2007-4770 in International Components for Unicodeinfo

Summary

libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

09/10/2007

Disclosure

01/28/2008

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-399

CVSS

7.3

EPSS

0.03670

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-4770
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-4770
CVE Details	https://www.cvedetails.com/cve/CVE-2007-4770/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!