Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-2217

Published: 09/10/2007 Updated: 16/10/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 940
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Windows 2000

Vulnerability Summary

Kodak Image Viewer in Microsoft Windows 2000 SP4, and in some cases XP SP2 and Server 2003 SP1 and SP2, allows remote malicious users to execute arbitrary code via crafted image files that trigger memory corruption, as demonstrated by a certain .tif (TIFF) file.

Vulnerable Product Search on Vulmon Subscribe to Product

kodak image_viewer

Exploits

Exploit DB: Microsoft Internet Explorer - TIF/TIFF Code Execution (MS07-055)
#!/usr/bin/perl # # Microsoft Internet Explorer TIF/TIFF Code Execution (MS07-055) # # Author: grabarz <grabarz [at] grabarzinfo> # # Note: This exploit is modified from Hong Gil-Dong, Jeon Woo-chi PoC # (wwwmilw0rmcom/exploits/4584) # # Internet Explorer has standart ImageBase address and PE Win32 header # is started at 0x00400000 ...
Exploit DB: Kodak Image Viewer - TIF/TIFF Code Execution (MS07-055)
/* MS07-055 Kodak Image Viewer TIF/TIFF Code Execution Proof Of Concept by Hong Gil-Dong, Jeon Woo-chi * Hwang-Hee(?~1542), Prime Minister in Korea * Once upon a time, One servant of Hwang-Hee was arguing with another * servant they asked Hwang-Hee to judge who is right * Hwang-Hee listend their story, and said "Both are right" * We ...

References

CWE-94http://www.us-cert.gov/cas/techalerts/TA07-282A.htmlhttp://www.kb.cert.org/vuls/id/180345http://www.securityfocus.com/bid/25909http://securitytracker.com/id?1018784http://secunia.com/advisories/27092http://www.vupen.com/english/advisories/2007/3435https://exchange.xforce.ibmcloud.com/vulnerabilities/36799https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1481https://www.exploit-db.com/exploits/4584https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-055http://www.securityfocus.com/archive/1/482366/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/4616/https://www.kb.cert.org/vuls/id/180345
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987buffer overflowCVE-2024-28890CVE-2024-27574CVE-2024-27347CVE-2024-31450privilegeSSTICVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook