Search for vulnerabilities
Vulnerability details: VCID-81u5-qrxd-aaab
Vulnerability ID VCID-81u5-qrxd-aaab
Aliases CVE-2007-2868
Summary CVE-2007-2868 security flaw
Status Published
Exploitability 2.0
Weighted Severity 9.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-94 Improper Control of Generation of Code ('Code Injection')
System Score Found at
rhas Critical https://access.redhat.com/errata/RHSA-2007:0400
rhas Critical https://access.redhat.com/errata/RHSA-2007:0401
rhas Critical https://access.redhat.com/errata/RHSA-2007:0402
epss 0.22335 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.28526 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.32162 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.32162 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.32162 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.32162 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.32162 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.91926 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.95540 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.95540 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.95540 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
epss 0.95540 https://api.first.org/data/v1/epss?cve=CVE-2007-2868
rhbs urgent https://bugzilla.redhat.com/show_bug.cgi?id=1618369
cvssv2 9.3 https://nvd.nist.gov/vuln/detail/CVE-2007-2868
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2007-12
Reference id Reference type URL
http://fedoranews.org/cms/node/2747
http://fedoranews.org/cms/node/2749
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579
http://osvdb.org/35138
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2868.json
https://api.first.org/data/v1/epss?cve=CVE-2007-2868
http://secunia.com/advisories/24406
http://secunia.com/advisories/24456
http://secunia.com/advisories/25469
http://secunia.com/advisories/25476
http://secunia.com/advisories/25488
http://secunia.com/advisories/25489
http://secunia.com/advisories/25490
http://secunia.com/advisories/25491
http://secunia.com/advisories/25492
http://secunia.com/advisories/25496
http://secunia.com/advisories/25533
http://secunia.com/advisories/25534
http://secunia.com/advisories/25559
http://secunia.com/advisories/25635
http://secunia.com/advisories/25644
http://secunia.com/advisories/25647
http://secunia.com/advisories/25664
http://secunia.com/advisories/25685
http://secunia.com/advisories/25750
http://secunia.com/advisories/25858
http://secunia.com/advisories/27427
http://secunia.com/advisories/28363
http://security.gentoo.org/glsa/glsa-200706-06.xml
https://exchange.xforce.ibmcloud.com/vulnerabilities/34605
https://issues.rpath.com/browse/RPL-1424
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.363947
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.571857
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10711
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103125-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201505-1
http://www.debian.org/security/2007/dsa-1300
http://www.debian.org/security/2007/dsa-1305
http://www.debian.org/security/2007/dsa-1306
http://www.debian.org/security/2007/dsa-1308
http://www.kb.cert.org/vuls/id/609956
http://www.mandriva.com/security/advisories?name=MDKSA-2007:119
http://www.mandriva.com/security/advisories?name=MDKSA-2007:120
http://www.mandriva.com/security/advisories?name=MDKSA-2007:131
http://www.mozilla.org/security/announce/2007/mfsa2007-12.html
http://www.novell.com/linux/security/advisories/2007_36_mozilla.html
http://www.redhat.com/support/errata/RHSA-2007-0400.html
http://www.redhat.com/support/errata/RHSA-2007-0401.html
http://www.redhat.com/support/errata/RHSA-2007-0402.html
http://www.securityfocus.com/archive/1/470172/100/200/threaded
http://www.securityfocus.com/archive/1/471842/100/0/threaded
http://www.securityfocus.com/bid/24242
http://www.securitytracker.com/id?1018151
http://www.securitytracker.com/id?1018152
http://www.securitytracker.com/id?1018153
http://www.ubuntu.com/usn/usn-468-1
http://www.ubuntu.com/usn/usn-469-1
http://www.us-cert.gov/cas/techalerts/TA07-151A.html
http://www.vupen.com/english/advisories/2007/1994
http://www.vupen.com/english/advisories/2007/3632
http://www.vupen.com/english/advisories/2008/0082
1618369 https://bugzilla.redhat.com/show_bug.cgi?id=1618369
cpe:2.3:a:mozilla:firefox:1.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.11:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.5.0.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:1.5.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:2.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:2.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:2.0.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:2.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:2.0.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:2.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:2.0.0.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:2.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.11:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:1.5.0.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:1.5.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:2.0.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:2.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:2.0.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:2.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:2.0.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:2.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:2.0.0.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:2.0.0.3:*:*:*:*:*:*:*
CVE-2007-2868 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2868
CVE-2007-2868 https://nvd.nist.gov/vuln/detail/CVE-2007-2868
GLSA-200706-06 https://security.gentoo.org/glsa/200706-06
mfsa2007-12 https://www.mozilla.org/en-US/security/advisories/mfsa2007-12
RHSA-2007:0400 https://access.redhat.com/errata/RHSA-2007:0400
RHSA-2007:0401 https://access.redhat.com/errata/RHSA-2007:0401
RHSA-2007:0402 https://access.redhat.com/errata/RHSA-2007:0402
USN-468-1 https://usn.ubuntu.com/468-1/
USN-469-1 https://usn.ubuntu.com/469-1/
No exploits are available.
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C Found at https://nvd.nist.gov/vuln/detail/CVE-2007-2868
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.93228
EPSS Score 0.22335
Published At March 29, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.