Vulnerability Description
Buffer overflow in eject.c in Jason W. Bacon mcweject 0.9 on FreeBSD, and possibly other versions, allows local users to execute arbitrary code via a long command line argument, possibly involving the device name.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | 6.2 |
| Jason W. Bacon | Mcweject | 0.9 |
References
- http://secunia.com/advisories/24641
- http://www.vupen.com/english/advisories/2007/1125
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33212
- https://www.exploit-db.com/exploits/3578
- http://secunia.com/advisories/24641
- http://www.vupen.com/english/advisories/2007/1125
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33212
- https://www.exploit-db.com/exploits/3578
FAQ
What is CVE-2007-1719?
CVE-2007-1719 is a vulnerability with a CVSS score of 7.2 (HIGH). Buffer overflow in eject.c in Jason W. Bacon mcweject 0.9 on FreeBSD, and possibly other versions, allows local users to execute arbitrary code via a long command line argument, possibly involving the...
How severe is CVE-2007-1719?
CVE-2007-1719 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1719?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd, Jason W. Bacon Mcweject.