Executive Summary
Summary | |
---|---|
Title | Vulnerability in Kodak Image Viewer Could Allow Remote Code Execution (923810) |
Informations | |||
---|---|---|---|
Name | MS07-055 | First vendor Publication | 2007-10-09 |
Vendor | Microsoft | Last vendor Modification | 2007-10-09 |
Severity (Vendor) | Critical | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
This critical security update resolves a privately reported vulnerability. A remote code execution vulnerability exists in the way that the Kodak Image Viewer, formerly known as Wang Image Viewer, handles specially crafted images files. The vulnerability could allow an attacker to remotely execute code on the affected system. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/ms07-055.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:1481 | |||
Oval ID: | oval:org.mitre.oval:def:1481 | ||
Title: | Kodak Image Viewer Remote Code Execution Vulnerability | ||
Description: | Kodak Image Viewer in Microsoft Windows 2000 SP4, and in some cases XP SP2 and Server 2003 SP1 and SP2, allows remote attackers to execute arbitrary code via crafted image files that trigger memory corruption, as demonstrated by a certain .tif (TIFF) file. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-2217 | Version: | 7 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Kodak Image Viewer |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 |
SAINT Exploits
Description | Link |
---|---|
Kodak Image Viewer TIFF image handling vulnerability | More info here |
ExploitDB Exploits
id | Description |
---|---|
2007-11-11 | Microsoft Internet Explorer - TIF/TIFF Code Execution (MS07-055) |
2007-10-29 | Kodak Image Viewer -TIF/TIFF Code Execution Exploit PoC (MS07-055) |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
37627 | Microsoft Windows Kodak Image Viewer Image File Handling Arbitrary Code Execu... |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2007-10-11 | IAVM : 2007-B-0029 - Microsoft Windows Kodak Image Viewer Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0015304 |
Snort® IPS/IDS
Date | Description |
---|---|
2015-05-19 | Microsoft Kodak Imaging small offset malformed tiff - little-endian RuleID : 34135 - Revision : 2 - Type : FILE-IMAGE |
2014-01-10 | Microsoft Kodak Imaging large offset malformed tiff - big-endian RuleID : 23561 - Revision : 8 - Type : FILE-IMAGE |
2014-01-10 | Microsoft Kodak Imaging large offset malformed tiff - big-endian RuleID : 17232 - Revision : 21 - Type : FILE-IMAGE |
2014-01-10 | Microsoft Kodak Imaging small offset malformed tiff - little-endian RuleID : 17231 - Revision : 19 - Type : FILE-IMAGE |
2014-01-10 | Microsoft Windows 2000 Kodak Imaging large offset malformed tiff 2 RuleID : 12634 - Revision : 18 - Type : FILE-IMAGE |
2014-01-10 | Microsoft Windows 2000 Kodak Imaging small offset malformed tiff RuleID : 12633 - Revision : 10 - Type : EXPLOIT |
2014-01-10 | Microsoft Windows 2000 Kodak Imaging large offset malformed jpeg tables RuleID : 12632 - Revision : 10 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows 2000 Kodak Imaging small offset malformed jpeg tables RuleID : 12631 - Revision : 10 - Type : OS-WINDOWS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2007-10-09 | Name : Arbitrary code can be executed on the remote host through Kodak Image Viewer. File : smb_nt_ms07-055.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2015-05-19 21:26:16 |
|
2014-02-17 11:45:47 |
|
2014-01-19 21:30:07 |
|
2013-11-11 12:41:06 |
|
2013-05-11 12:22:04 |
|