[VIM] Question about CVE-2007-2274
Heinbockel, Bill
heinbockel at mitre.org
Thu May 24 12:21:26 UTC 2007
It is unclear from the associated iDefense advisory:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=53
5
CVE has assigned CVE-2007-2809 for the iDefense torrent issue.
As usual, the descriptions will be updated if any new information
becomes available.
I guess some clarification from Opera or iDefense would be helpful.
=======================================
CVE-2007-2809
Buffer overflow in the transfer manager in Opera before 9.21 for
Windows allows user-assisted remote attackers to execute arbitrary
code via a crafted torrent file. NOTE: due to the lack of details,
it is not clear if this is the same issue as CVE-2007-2274.
William Heinbockel
Infosec Engineer, Sr.
The MITRE Corporation
202 Burlington Rd. MS S145
Bedford, MA 01730
heinbockel at mitre.org
781-271-2615
>-----Original Message-----
>From: vim-bounces at attrition.org
>[mailto:vim-bounces at attrition.org] On Behalf Of George A. Theall
>Sent: Thursday, 24 May, 2007 06:46
>To: Vulnerability Information Managers
>Subject: [VIM] Question about CVE-2007-2274
>
>Anyone know if CVE-2007-2274 / milw0rm 3784 refer to the same
>underlying
>flaw as the buffer overflow that Opera recently fixed with the release
>of 9.21 (<http://www.opera.com/support/search/view/860/>)?
>
>George
>--
>theall at tenablesecurity.com
>
More information about the VIM
mailing list