Vulnerability Details CVE-2007-0391
Format string vulnerability in the log creation functionality of BitDefender Client Professional Plus 8.02 allows attackers to execute arbitrary code via certain scan job settings.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.0%
CVSS Severity
CVSS v2 Score 7.2
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/051883.html
- http://www.bitdefender.com/KB325-en--Format-string-vulnerability.html
- http://www.securityfocus.com/archive/1/457414/100/0/threaded
- http://www.securityfocus.com/bid/22128
- http://www.vupen.com/english/advisories/2007/0253
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31608
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/051883.html
- http://www.bitdefender.com/KB325-en--Format-string-vulnerability.html
- http://www.securityfocus.com/archive/1/457414/100/0/threaded
- http://www.securityfocus.com/bid/22128
- http://www.vupen.com/english/advisories/2007/0253
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31608
Products affected by CVE-2007-0391
-
cpe:2.3:a:bitdefender:bitdefender_client:professional_plus_8.02