CVE-2007-1083

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=479", "name": "20070222 VeriSign ConfigChk ActiveX Control Buffer Overflow Vulnerability", "tags": [], "refsource": "IDEFENSE"}, {"url": "http://jvn.jp/cert/JVNVU%23308087/index.html", "name": "http://jvn.jp/cert/JVNVU%23308087/index.html", "tags": [], "refsource": "MISC"}, {"url": "http://www.jpcert.or.jp/at/2007/at070006.txt", "name": "http://www.jpcert.or.jp/at/2007/at070006.txt", "tags": [], "refsource": "MISC"}, {"url": "https://download.verisign.co.jp/support/announce/20070216.html", "name": "https://download.verisign.co.jp/support/announce/20070216.html", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.kb.cert.org/vuls/id/308087", "name": "VU#308087", "tags": ["US Government Resource"], "refsource": "CERT-VN"}, {"url": "http://www.securityfocus.com/bid/22671", "name": "22671", "tags": [], "refsource": "BID"}, {"url": "http://www.securityfocus.com/bid/22676", "name": "22676", "tags": [], "refsource": "BID"}, {"url": "http://www.securitytracker.com/id?1017692", "name": "1017692", "tags": [], "refsource": "SECTRACK"}, {"url": "http://www.securitytracker.com/id?1017693", "name": "1017693", "tags": [], "refsource": "SECTRACK"}, {"url": "http://www.securitytracker.com/id?1017694", "name": "1017694", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/24249", "name": "24249", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://osvdb.org/33479", "name": "33479", "tags": [], "refsource": "OSVDB"}, {"url": "http://attrition.org/pipermail/vim/2007-February/001385.html", "name": "20070223 Verisign ConfigChk ActiveX Overflow(s)", "tags": [], "refsource": "VIM"}, {"url": "http://attrition.org/pipermail/vim/2007-February/001384.html", "name": "20070222 Verisign ConfigChk ActiveX Overflow(s)", "tags": [], "refsource": "VIM"}, {"url": "http://www.vupen.com/english/advisories/2007/0702", "name": "ADV-2007-0702", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32639", "name": "verisign-configchk-bo(32639)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Buffer overflow in the Configuration Checker (ConfigChk) ActiveX control in VSCnfChk.dll 2.0.0.2 for Verisign Managed PKI Service, Secure Messaging for Microsoft Exchange, and Go Secure! allows remote attackers to execute arbitrary code via long arguments to the VerCompare method."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-119"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-1083", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2007-02-23T02:28Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:verisign:mpki:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:verisign:mpki:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:verisign:mpki:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:verisign:mpki:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "6.1.3"}, {"cpe23Uri": "cpe:2.3:a:verisign:mpki:4.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-29T01:30Z"}