VulnerableCode Vulnerability Details - VCID-huhd-8ts7-kufj

Search for vulnerabilities

Vulnerability details: VCID-huhd-8ts7-kufj

Essentials
Severities (6)
References (5)
Severity details (0)
Exploits (2)
EPSS
History (1)

Vulnerability ID	VCID-huhd-8ts7-kufj
Aliases	CVE-2007-4560
Summary
Status	Published
Exploitability	2.0
Weighted Severity	0.8
Risk	1.6
Affected and Fixed Packages	Package Details

Weaknesses (0)

There are no known CWE.

System	Score	Found at
epss	0.91095	https://api.first.org/data/v1/epss?cve=CVE-2007-4560
epss	0.91095	https://api.first.org/data/v1/epss?cve=CVE-2007-4560
epss	0.91095	https://api.first.org/data/v1/epss?cve=CVE-2007-4560
epss	0.91095	https://api.first.org/data/v1/epss?cve=CVE-2007-4560
epss	0.91095	https://api.first.org/data/v1/epss?cve=CVE-2007-4560
epss	0.91095	https://api.first.org/data/v1/epss?cve=CVE-2007-4560

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2007-4560
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4560
CVE-2007-4560	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/4761.pl
CVE-2007-4560;OSVDB-36909	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/16924.rb
CVE-2007-4560;OSVDB-36909	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/9913.rb

Data source	Exploit-DB
Date added	Dec. 20, 2007
Description	Sendmail with clamav-milter < 0.91.2 - Remote Command Execution
Ransomware campaign use	Known
Source publication date	Dec. 21, 2007
Exploit type	remote
Platform	multiple
Source update date	Dec. 4, 2016

Data source	Metasploit
Description	This module exploits a flaw in the Clam AntiVirus suite 'clamav-milter' (Sendmail mail filter). Versions prior to v0.92.2 are vulnerable. When implemented with black hole mode enabled, it is possible to execute commands remotely due to an insecure popen call.
Note	Reliability: - unknown-reliability Stability: - unknown-stability SideEffects: - unknown-side-effects
Ransomware campaign use	Unknown
Source publication date	Aug. 24, 2007
Platform	Unix
Source URL	https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/unix/smtp/clamav_milter_blackhole.rb

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Percentile	0.99623
EPSS Score	0.91095
Published At	Aug. 6, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T11:36:26.468969+00:00	EPSS Importer	Import	https://epss.cyentia.com/epss_scores-current.csv.gz	37.0.0