| Max CVSS | 9.3 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-4962 | 9.3 |
Directory traversal vulnerability in WinImage 8.10 and earlier allows user-assisted remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a filename within a (1) .IMG or (2) .ISO file. NOTE: this can be leveraged for code exec
|
15-10-2018 - 21:38 | 18-09-2007 - 22:17 | |
| CVE-2007-4963 | 9.3 |
Visual truncation vulnerability in WinImage 8.10 and earlier allows remote attackers to spoof a destination filename via a long sequence of space characters in a filename within a (1) .IMG or (2) .ISO file. NOTE: this can be leveraged with a separate
|
15-10-2018 - 21:38 | 18-09-2007 - 22:17 | |
| CVE-2007-4964 | 5.0 |
WinImage 8.10 and earlier allows remote attackers to cause a denial of service (infinite loop) via an invalid BPB_BytsPerSec field in the header of a .IMG file.
|
15-10-2018 - 21:38 | 18-09-2007 - 22:17 |