Vulnerabilities > CVE-2007-4580 - Out-of-bounds Write vulnerability in Bufferzonesecurity Bufferzone
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Buffer underflow in redlight.sys in BufferZone 2.1 and 2.5 allows local users to cause a denial of service (crash) and possibly execute arbitrary code by sending a small buffer size value to the FsSetVolumeInformation IOCTL handler code with a FsSetDirectoryInformation subcode containing a large buffer.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
References
- http://osvdb.org/39154
- http://osvdb.org/39154
- http://secunia.com/advisories/26608
- http://secunia.com/advisories/26608
- http://securityreason.com/securityalert/3071
- http://securityreason.com/securityalert/3071
- http://www.securityfocus.com/archive/1/477726/100/0/threaded
- http://www.securityfocus.com/archive/1/477726/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36278
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36278