Vulnerability Details CVE-2007-1654
Buffer overflow in the Ne7sshSftp::addOpenHandle function in ne7ssh_sftp.cpp in NetSieben SSH Library (ne7ssh) before 1.2.1 allows user-assisted remote SFTP servers to cause a denial of service (crash) or possibly execute arbitrary code via multiple file transfers, related to multiple open file handles in SFTP (1) put and (2) get operations.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.7%
CVSS Severity
CVSS v2 Score 9.3
References
Products affected by CVE-2007-1654
-
cpe:2.3:a:netsieben:netsieben_ssh_library:1.03
-
cpe:2.3:a:netsieben:netsieben_ssh_library:1.1
-
cpe:2.3:a:netsieben:netsieben_ssh_library:1.1.5
-
cpe:2.3:a:netsieben:netsieben_ssh_library:1.1.6
-
cpe:2.3:a:netsieben:netsieben_ssh_library:1.2.0