[VIM] Question about CVE-2007-2274

Heinbockel, Bill heinbockel at mitre.org
Thu May 24 12:21:26 UTC 2007

It is unclear from the associated iDefense advisory:

CVE has assigned CVE-2007-2809 for the iDefense torrent issue.
As usual, the descriptions will be updated if any new information
becomes available.
I guess some clarification from Opera or iDefense would be helpful.


Buffer overflow in the transfer manager in Opera before 9.21 for
Windows allows user-assisted remote attackers to execute arbitrary
code via a crafted torrent file. NOTE: due to the lack of details,
it is not clear if this is the same issue as CVE-2007-2274.

William Heinbockel
Infosec Engineer, Sr.
The MITRE Corporation
202 Burlington Rd. MS S145
Bedford, MA 01730
heinbockel at mitre.org

>-----Original Message-----
>From: vim-bounces at attrition.org 
>[mailto:vim-bounces at attrition.org] On Behalf Of George A. Theall
>Sent: Thursday, 24 May, 2007 06:46
>To: Vulnerability Information Managers
>Subject: [VIM] Question about CVE-2007-2274
>Anyone know if CVE-2007-2274 / milw0rm 3784 refer to the same 
>flaw as the buffer overflow that Opera recently fixed with the release

>of 9.21 (<http://www.opera.com/support/search/view/860/>)?
>theall at tenablesecurity.com

More information about the VIM mailing list