Vulnerability Description
Buffer overflow in OpenBase 10.0.5 and earlier might allow remote authenticated users to execute arbitrary code or cause a denial of service (daemon crash) by creating a stored procedure with a long name and invoking this procedure, which triggers heap corruption.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openbase International Ltd | Openbase | <= 10.0.5 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/27525Vendor Advisory
- http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txtExploit
- http://www.securityfocus.com/bid/26347Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38289
- http://secunia.com/advisories/27525Vendor Advisory
- http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txtExploit
- http://www.securityfocus.com/bid/26347Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38289
FAQ
What is CVE-2007-5929?
CVE-2007-5929 is a vulnerability with a CVSS score of 9.0 (HIGH). Buffer overflow in OpenBase 10.0.5 and earlier might allow remote authenticated users to execute arbitrary code or cause a denial of service (daemon crash) by creating a stored procedure with a long n...
How severe is CVE-2007-5929?
CVE-2007-5929 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5929?
Check the references section above for vendor advisories and patch information. Affected products include: Openbase International Ltd Openbase.