CVE-2007-5133

Published Sep 27, 2007
Last updated 4 years ago
CVSS info 7.1
Overview

Description: Microsoft Windows Explorer (explorer.exe) allows user-assisted remote attackers to cause a denial of service (CPU consumption) via a certain PNG file with a large tEXt chunk that possibly triggers an integer overflow in PNG chunk size handling, as demonstrated by badlycrafted.png.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C
Weaknesses

nvd@nist.gov: CWE-189
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:*:itanium:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "580632FB-7EB8-4DC6-A372-742D4523BF79"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:*:std:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9562EC45-0F28-4E4D-AA16-7E34241F26B5"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:*:wed:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1DA5F012-9457-4562-B50C-2C674008B494"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:*:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD264C73-360E-414D-BE22-192F92E5A0A3"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:*:x64-std:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EF7C885-1142-477C-9AA2-5068EB9EFE82"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:*:xp-64bit:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B5D0781-714B-4BE8-B74A-3A2CBC58F604"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:gold:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F3C557A-71D8-47F9-9E12-CE938F301E66"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:gold:itanium:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81C8959A-915B-472F-B043-A57BA11FDB93"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:gold:std:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00C55EE5-2F70-4DC3-937A-BB5F13AC078E"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:gold:wed:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "918EA750-E48B-438D-9C22-531A153D66B6"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:gold:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B92137A3-71F9-466B-87CA-F3E9EF53AE4B"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:gold:x64-std:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "115D2DE5-8F40-441C-8783-430668AEE356"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A83A9DC-224F-4887-A4AE-9071B081AE37"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:r2:std:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E44AD1AD-C4BD-45F0-953A-13209C772205"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:r2:wed:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A52FC62B-4CCD-46C1-B0E1-2328707C28D5"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:r2:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A8D49FA-C8F8-4B59-BBCB-924CC105B371"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:r2:x64-std:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "701A3529-675F-43B8-89DE-EB571C4CE8B8"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE8F4276-4D97-480D-A542-FE9982FFD765"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp1:std:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30A3D604-7DC9-42F3-9DB1-AF32CA4C8BDA"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp1:wed:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAED2910-B2DE-4349-AF56-3AD25A9A6F93"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2978BF86-5A1A-438E-B81F-F360D0E30C9C"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp2:itanium:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7EFB032-47F4-4497-B16B-CB9126EAC9DF"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp2:std:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BA1482B6-C9A1-497A-8CD7-63F9F7CEAB3C"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp2:wed:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73CDA5B6-99B9-475E-A8F7-837A7EB9747E"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp2:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6881476D-81A2-4DFD-AC77-82A8D08A0568"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EAA86830-BEA8-4943-83EA-C267FA534223"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31A64C69-D182-4BEC-BA8A-7B405F5B2FC0"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D826455B-E635-4FB2-9428-81028E10D98F"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA778424-6F70-4AB6-ADD5-5D4664DFE463"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D3B5E4F-56A6-4696-BBB4-19DF3613D020"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3852BB02-47A1-40B3-8E32-8D8891A53114"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:business:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDDE7F1B-768A-4A53-8765-E48DEB0EF3D2"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FF0D88B-821D-4E45-A2EC-5279B9190356"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:home_basic:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A9CAA2B-947F-47E8-A032-DFA2D1F05B6E"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:home_premium:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C17A747-EF5C-4852-89F7-DE45DDD6EB60"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:starter:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2CB64F9-655C-4D56-B1BE-F9C04E5AA678"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:ultimate:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0257B7A-A8D1-4AC9-98C8-324B5B810877"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1DD1D5ED-FE7C-4ADF-B3AF-1F13E51B4FB5"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:x64-business:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE3A1EF2-B7F1-4006-A4C2-05342703C841"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:x64-home_basic:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCAD23B6-A2F0-48A6-ADFF-6E0E091DD896"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:gold:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D34A558F-A656-43EB-AC52-C3710F77CDD8"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:*:gold:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9DC56EB-EDC4-4DFE-BA9B-B17FF4A91734"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CAEEA81-5037-4B68-98D9-83AAEBC98E20"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:64bit:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40DCD873-93E3-403A-8446-65F7E1B4FAD8"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:embedded:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B95B2BE4-B4E0-4B77-9999-53B9224F5CB1"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:ibm_oem:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81A690FA-1808-4E4F-8CBC-75FB5358D439"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "403945FA-8676-4D98-B903-48452B46F48F"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:pro:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19DA594E-B495-4C5D-BC94-79582D3983C9"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:tablet_pc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4707F3F-F79E-4085-A81B-569204B7B1DB"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACF75FC8-095A-4EEA-9A41-C27CFF3953FB"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "580B0C9B-DD85-40FA-9D37-BAC0C96D57FC"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:gold:embedded:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F874274-760A-4544-BA19-0DB4F051FBB4"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:gold:media_center:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3D392C5-7158-459B-B8F4-DB8A89442587"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:gold:pro:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "629092E5-2AE1-4401-BFE6-DFB541A6E781"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:gold:tablet_pc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A6EDD65-D857-49A4-89FF-8DDF0D016613"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A74985B6-BCA5-49E3-878B-77D7FA43070C"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:64bit:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC8D6802-5F57-477E-B439-529081666852"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:embedded:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ADEBB882-1C55-4B7B-B4CF-F1B23502FD90"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:ibm_oem:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C387041-0A42-4A18-A28B-49F739BB375B"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A05337E-18A5-4939-85A0-69583D9B5AD9"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:pro:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E78E8FC4-9D64-4ADC-B318-55F4337B7EEC"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:tablet_pc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9687E6C-EDE9-42E4-93D0-C4144FEC917A"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B339C33-8896-4896-88FF-88E74FDBC543"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:embedded:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6031BA1-2F87-4556-A205-1E1B7661DFCF"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:media_center:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E439FA5-78BF-41B1-BAEC-C1C94CE86F2E"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:pro:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "261215DA-7018-4CE5-B055-0935DF9089A5"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB2BE2DE-7B06-47ED-A674-15D45448F357"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:x64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57ECAAA8-8709-4AC7-9CE7-49A8040C04D3"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B47EBFCC-1828-45AB-BC6D-FB980929A81A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:3ware:3dm_disk_management_software:*:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FDD57E0-16A0-4868-B6E2-DFA72B57F5BB"
          },
          {
            "criteria": "cpe:2.3:a:3ware:3dm_disk_management_software:*:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9DF211B8-FFA0-4138-A3AC-F57CD7BD817F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
