CVE-2007-4770 - CVE Reference - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

CVE Reference: CVE-2007-4770

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-4770

Description: libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/39938 UBUNTU http://www.ubuntu.com/usn/usn-591-1 SUSE http://www.novell.com/linux/security/advisories/2008_23_openoffice.html http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-233922-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-231641-1 ST 1019269 SAID Secunia Advisory: SA28575 Secunia Advisory: SA28615 Secunia Advisory: SA28669 Secunia Advisory: SA28783 Secunia Advisory: SA29194 Secunia Advisory: SA29242 Secunia Advisory: SA29291 Secunia Advisory: SA29333 Secunia Advisory: SA29294 Secunia Advisory: SA29852 Secunia Advisory: SA29910 Secunia Advisory: SA29987 REDHAT http://rhn.redhat.com/errata/RHSA-2008-0090.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5507 MLIST http://sourceforge.net/mailarchive/message.php?msg_name=d03a2ffb0801221538x68825e42xb4a4aaf0fcccecbd%40mail.gmail.com MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:026 GENTOO http://security.gentoo.org/glsa/glsa-200803-20.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1511 CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0043 http://www.openoffice.org/security/cves/CVE-2007-5745.html http://www.openoffice.org/security/cves/CVE-2007-4770.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/487677/100/0/threaded BID 27455

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Microsoft Windows DNS Spoofing Vulnerabilities

2.	Microsoft Access Snapshot Viewer ActiveX Control Vulnerability

3.	Microsoft Word Unspecified Code Execution Vulnerability

4.	Microsoft SQL Server and MSDE Multiple Vulnerabilities

5.	Microsoft Windows Explorer Saved Search Vulnerability

6.	ISC BIND Query Port DNS Cache Poisoning

7.	Cisco Products DNS Cache Poisoning Vulnerability

8.	Joomla Unauthorized Access Vulnerabilities

9.	Microsoft Outlook Web Access Script Insertion Vulnerabilities

10.	Dokeos "include" Local File Inclusion Vulnerability