cvelistv5 - CVE-2007-5169

CVE-2007-5169 (GCVE-0-2007-5169)

Vulnerability from cvelistv5 – Published: 2007-10-11 10:00 – Updated: 2024-08-07 15:24

Summary

Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://vuln.sg/pagemaker701-en.html	x_refsource_MISC
	http://secunia.com/advisories/27158	third-party-advisoryx_refsource_SECUNIA
	http://www.adobe.com/support/security/bulletins/a…	x_refsource_CONFIRM
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://securitytracker.com/id?1018791	vdb-entryx_refsource_SECTRACK
	http://www.vupen.com/english/advisories/2007/3441	vdb-entryx_refsource_VUPEN
	http://osvdb.org/38067	vdb-entryx_refsource_OSVDB
	http://www.securityfocus.com/bid/25989	vdb-entryx_refsource_BID

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T15:24:41.777Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://vuln.sg/pagemaker701-en.html"
          },
          {
            "name": "27158",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27158"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
          },
          {
            "name": "adobe-pagemaker-bo(37041)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37041"
          },
          {
            "name": "1018791",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1018791"
          },
          {
            "name": "ADV-2007-3441",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/3441"
          },
          {
            "name": "38067",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/38067"
          },
          {
            "name": "25989",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/25989"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-10-09T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://vuln.sg/pagemaker701-en.html"
        },
        {
          "name": "27158",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27158"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
        },
        {
          "name": "adobe-pagemaker-bo(37041)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37041"
        },
        {
          "name": "1018791",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1018791"
        },
        {
          "name": "ADV-2007-3441",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/3441"
        },
        {
          "name": "38067",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/38067"
        },
        {
          "name": "25989",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/25989"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-5169",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://vuln.sg/pagemaker701-en.html",
              "refsource": "MISC",
              "url": "http://vuln.sg/pagemaker701-en.html"
            },
            {
              "name": "27158",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/27158"
            },
            {
              "name": "http://www.adobe.com/support/security/bulletins/apsb07-15.html",
              "refsource": "CONFIRM",
              "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
            },
            {
              "name": "adobe-pagemaker-bo(37041)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37041"
            },
            {
              "name": "1018791",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1018791"
            },
            {
              "name": "ADV-2007-3441",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/3441"
            },
            {
              "name": "38067",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/38067"
            },
            {
              "name": "25989",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/25989"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-5169",
    "datePublished": "2007-10-11T10:00:00",
    "dateReserved": "2007-09-30T00:00:00",
    "dateUpdated": "2024-08-07T15:24:41.777Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:adobe:pagemaker:7.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B68D537F-E26B-41DF-BA33-21428F6AB805\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:adobe:pagemaker:7.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734A3A65-7D14-49CC-B6EB-10DF1D91B8BE\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer basado en pila en MAIPM6.dll en Adobe PageMaker 7.0.1 y 7.0.2 sobre Windows permite a atacantes remotos con la intervenci\\u00f3n del usuario ejecutar c\\u00f3digo de su elecci\\u00f3n a trav\\u00e9s de un nombre de fuente largo en un archivo .PMD.\"}]",
      "id": "CVE-2007-5169",
      "lastModified": "2024-11-21T00:37:17.897",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2007-10-11T10:17:00.000",
      "references": "[{\"url\": \"http://osvdb.org/38067\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/27158\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1018791\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://vuln.sg/pagemaker701-en.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.adobe.com/support/security/bulletins/apsb07-15.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.securityfocus.com/bid/25989\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/3441\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/37041\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://osvdb.org/38067\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/27158\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1018791\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://vuln.sg/pagemaker701-en.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.adobe.com/support/security/bulletins/apsb07-15.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.securityfocus.com/bid/25989\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/3441\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/37041\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-5169\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-10-11T10:17:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer basado en pila en MAIPM6.dll en Adobe PageMaker 7.0.1 y 7.0.2 sobre Windows permite a atacantes remotos con la intervenci\u00f3n del usuario ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un nombre de fuente largo en un archivo .PMD.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:pagemaker:7.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B68D537F-E26B-41DF-BA33-21428F6AB805\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:pagemaker:7.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734A3A65-7D14-49CC-B6EB-10DF1D91B8BE\"}]}]}],\"references\":[{\"url\":\"http://osvdb.org/38067\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/27158\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1018791\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://vuln.sg/pagemaker701-en.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.adobe.com/support/security/bulletins/apsb07-15.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.securityfocus.com/bid/25989\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/3441\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/37041\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/38067\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/27158\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1018791\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://vuln.sg/pagemaker701-en.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.adobe.com/support/security/bulletins/apsb07-15.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.securityfocus.com/bid/25989\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/3441\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/37041\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

FKIE_CVE-2007-5169

Vulnerability from fkie_nvd - Published: 2007-10-11 10:17 - Updated: 2025-04-09 00:30

Severity ?

Summary

Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.

References

URL	Tags
cve@mitre.org	http://osvdb.org/38067
cve@mitre.org	http://secunia.com/advisories/27158
cve@mitre.org	http://securitytracker.com/id?1018791	Patch
cve@mitre.org	http://vuln.sg/pagemaker701-en.html
cve@mitre.org	http://www.adobe.com/support/security/bulletins/apsb07-15.html	Patch
cve@mitre.org	http://www.securityfocus.com/bid/25989	Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2007/3441
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/37041
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/38067
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/27158
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1018791	Patch
af854a3a-2127-422b-91ae-364da2661108	http://vuln.sg/pagemaker701-en.html
af854a3a-2127-422b-91ae-364da2661108	http://www.adobe.com/support/security/bulletins/apsb07-15.html	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/25989	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/3441
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/37041

Impacted products

	Vendor	Product	Version
	adobe	pagemaker	7.0.1
	adobe	pagemaker	7.0.2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:adobe:pagemaker:7.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B68D537F-E26B-41DF-BA33-21428F6AB805",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:adobe:pagemaker:7.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "734A3A65-7D14-49CC-B6EB-10DF1D91B8BE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer basado en pila en MAIPM6.dll en Adobe PageMaker 7.0.1 y 7.0.2 sobre Windows permite a atacantes remotos con la intervenci\u00f3n del usuario ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un nombre de fuente largo en un archivo .PMD."
    }
  ],
  "id": "CVE-2007-5169",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2007-10-11T10:17:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/38067"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/27158"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://securitytracker.com/id?1018791"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://vuln.sg/pagemaker701-en.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/25989"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/3441"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37041"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/38067"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/27158"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://securitytracker.com/id?1018791"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://vuln.sg/pagemaker701-en.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/25989"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/3441"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37041"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTA-2007-AVI-433

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été identifiée dans l'application Adobe PageMaker. Elle permettrait à une personne malveillante de prendre le contrôle du système affecté.

Description

Une vulnérabilité a été identifiée dans l'application Adobe PageMaker. Elle permettrait de prendre, via un dépassement de mémoire tampon, le contrôle du système affecté. Cette vulnérabilité n'est pas exploitable à distance.

Solution

Se référer au bulletin de sécurité d'Adobe pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Adobe	N/A	Adobe PageMaker 7.0.2.
	Adobe	N/A	Adobe PageMaker 7.0.1 ;

References

Title

Publication Time

Tags

Bulletin de sécurité Adobe du 09 octobre 2007	None	vendor-advisory
Bulletin de sécurité Adobe APSB07-15 du 09 octobre 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Adobe PageMaker 7.0.2.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Adobe",
          "scada": false
        }
      }
    },
    {
      "description": "Adobe PageMaker 7.0.1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Adobe",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l\u0027application Adobe PageMaker.\nElle permettrait de prendre, via un d\u00e9passement de m\u00e9moire tampon, le\ncontr\u00f4le du syst\u00e8me affect\u00e9. Cette vuln\u00e9rabilit\u00e9 n\u0027est pas exploitable \u00e0\ndistance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 d\u0027Adobe pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-5169",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5169"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Adobe APSB07-15 du 09 octobre 2007 :",
      "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
    }
  ],
  "reference": "CERTA-2007-AVI-433",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-10-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire en local"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l\u0027application Adobe PageMaker.\nElle permettrait \u00e0 une personne malveillante de prendre le contr\u00f4le du\nsyst\u00e8me affect\u00e9.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Adobe PageMaker",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Adobe du 09 octobre 2007",
      "url": null
    }
  ]
}

CERTA-2007-AVI-433

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été identifiée dans l'application Adobe PageMaker. Elle permettrait à une personne malveillante de prendre le contrôle du système affecté.

Description

Solution

Se référer au bulletin de sécurité d'Adobe pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Adobe	N/A	Adobe PageMaker 7.0.2.
	Adobe	N/A	Adobe PageMaker 7.0.1 ;

References

Title

Publication Time

Tags

Bulletin de sécurité Adobe du 09 octobre 2007	None	vendor-advisory
Bulletin de sécurité Adobe APSB07-15 du 09 octobre 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Adobe PageMaker 7.0.2.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Adobe",
          "scada": false
        }
      }
    },
    {
      "description": "Adobe PageMaker 7.0.1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Adobe",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l\u0027application Adobe PageMaker.\nElle permettrait de prendre, via un d\u00e9passement de m\u00e9moire tampon, le\ncontr\u00f4le du syst\u00e8me affect\u00e9. Cette vuln\u00e9rabilit\u00e9 n\u0027est pas exploitable \u00e0\ndistance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 d\u0027Adobe pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-5169",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5169"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Adobe APSB07-15 du 09 octobre 2007 :",
      "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
    }
  ],
  "reference": "CERTA-2007-AVI-433",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-10-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire en local"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l\u0027application Adobe PageMaker.\nElle permettrait \u00e0 une personne malveillante de prendre le contr\u00f4le du\nsyst\u00e8me affect\u00e9.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Adobe PageMaker",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Adobe du 09 octobre 2007",
      "url": null
    }
  ]
}

GHSA-M5QP-6CMG-5VW4

Vulnerability from github – Published: 2022-05-01 18:30 – Updated: 2022-05-01 18:30

Details

Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-5169"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-10-11T10:17:00Z",
    "severity": "HIGH"
  },
  "details": "Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.",
  "id": "GHSA-m5qp-6cmg-5vw4",
  "modified": "2022-05-01T18:30:42Z",
  "published": "2022-05-01T18:30:42Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5169"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37041"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/38067"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/27158"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1018791"
    },
    {
      "type": "WEB",
      "url": "http://vuln.sg/pagemaker701-en.html"
    },
    {
      "type": "WEB",
      "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/25989"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/3441"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2007-5169

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.

Aliases

CVE-2007-5169

Aliases

CVE-2007-5169

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-5169",
    "description": "Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.",
    "id": "GSD-2007-5169"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-5169"
      ],
      "details": "Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file.",
      "id": "GSD-2007-5169",
      "modified": "2023-12-13T01:21:41.046289Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-5169",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://vuln.sg/pagemaker701-en.html",
            "refsource": "MISC",
            "url": "http://vuln.sg/pagemaker701-en.html"
          },
          {
            "name": "27158",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/27158"
          },
          {
            "name": "http://www.adobe.com/support/security/bulletins/apsb07-15.html",
            "refsource": "CONFIRM",
            "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
          },
          {
            "name": "adobe-pagemaker-bo(37041)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37041"
          },
          {
            "name": "1018791",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1018791"
          },
          {
            "name": "ADV-2007-3441",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/3441"
          },
          {
            "name": "38067",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/38067"
          },
          {
            "name": "25989",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/25989"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:adobe:pagemaker:7.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:adobe:pagemaker:7.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-5169"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://vuln.sg/pagemaker701-en.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://vuln.sg/pagemaker701-en.html"
            },
            {
              "name": "http://www.adobe.com/support/security/bulletins/apsb07-15.html",
              "refsource": "CONFIRM",
              "tags": [
                "Patch"
              ],
              "url": "http://www.adobe.com/support/security/bulletins/apsb07-15.html"
            },
            {
              "name": "25989",
              "refsource": "BID",
              "tags": [
                "Patch"
              ],
              "url": "http://www.securityfocus.com/bid/25989"
            },
            {
              "name": "1018791",
              "refsource": "SECTRACK",
              "tags": [
                "Patch"
              ],
              "url": "http://securitytracker.com/id?1018791"
            },
            {
              "name": "27158",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/27158"
            },
            {
              "name": "38067",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/38067"
            },
            {
              "name": "ADV-2007-3441",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/3441"
            },
            {
              "name": "adobe-pagemaker-bo(37041)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37041"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2017-07-29T01:33Z",
      "publishedDate": "2007-10-11T10:17Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-5169 (GCVE-0-2007-5169)

FKIE_CVE-2007-5169

CERTA-2007-AVI-433

Description

Solution

CERTA-2007-AVI-433

Description

Solution

GHSA-M5QP-6CMG-5VW4

GSD-2007-5169

Tags

Sightings

Nomenclature