CVE-2007-5396 in IMinfo

Summary

Format string vulnerability in the ext_yahoo_contact_added function in yahoo.c in Miranda IM 0.7.1 allows remote attackers to execute arbitrary code via a Y7 Buddy Authorization packet with format string specifiers in the contact Yahoo! handle (who).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

10/12/2007

Disclosure

11/09/2007

Moderation

VulDB entry created

Entries

VDB-3450 (1)

CPE

ready

CWE

CWE-134 (Confirmed)

CVSS

7.3

EPSS

0.02814

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5396
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5396
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5396/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!