Search for vulnerabilities
| Vulnerability ID | VCID-hzbm-wkp1-27cw |
| Aliases |
CVE-2007-4370
|
| Summary | This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been fixed prior to January 1, 2012. The worst of these vulnerabilities could lead to local privilege escalation and remote code execution. Please see the package list and CVE identifiers below for more information. |
| Status | Published |
| Exploitability | 2.0 |
| Weighted Severity | 0.7 |
| Risk | 1.4 |
| Affected and Fixed Packages | Package Details |
| There are no known CWE. |
| System | Score | Found at |
|---|---|---|
| epss | 0.77767 | https://api.first.org/data/v1/epss?cve=CVE-2007-4370 |
| epss | 0.77767 | https://api.first.org/data/v1/epss?cve=CVE-2007-4370 |
| epss | 0.79491 | https://api.first.org/data/v1/epss?cve=CVE-2007-4370 |
| epss | 0.79491 | https://api.first.org/data/v1/epss?cve=CVE-2007-4370 |
| epss | 0.79491 | https://api.first.org/data/v1/epss?cve=CVE-2007-4370 |
| epss | 0.79491 | https://api.first.org/data/v1/epss?cve=CVE-2007-4370 |
| epss | 0.79491 | https://api.first.org/data/v1/epss?cve=CVE-2007-4370 |
| Reference id | Reference type | URL |
|---|---|---|
| https://api.first.org/data/v1/epss?cve=CVE-2007-4370 | ||
| CVE-2007-4370;OSVDB-39601 | Exploit | https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/16694.rb |
| GLSA-201412-09 | https://security.gentoo.org/glsa/201412-09 | |
| OSVDB-39601;CVE-2007-4370 | Exploit | https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/4283.pl |
| OSVDB-39601;CVE-2007-4370 | Exploit | https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/8253.c |
| Data source | Exploit-DB |
|---|---|
| Date added | March 19, 2009 |
| Description | Racer 0.5.3 Beta 5 - Remote Stack Buffer Overflow |
| Ransomware campaign use | Known |
| Source publication date | March 20, 2009 |
| Exploit type | remote |
| Platform | windows |
| Source update date | Oct. 27, 2016 |
| Data source | Metasploit |
|---|---|
| Description | This module exploits the Racer Car and Racing Simulator game versions v0.5.3 beta 5 and earlier. Both the client and server listen on UDP port 26000. By sending an overly long buffer we are able to execute arbitrary code remotely. |
| Note | Reliability: - unknown-reliability Stability: - unknown-stability SideEffects: - unknown-side-effects |
| Ransomware campaign use | Unknown |
| Source publication date | Aug. 10, 2008 |
| Platform | Windows |
| Source URL | https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/games/racer_503beta5.rb |
| Percentile | 0.98991 |
| EPSS Score | 0.77767 |
| Published At | April 1, 2026, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-04-01T12:58:49.583795+00:00 | Gentoo Importer | Import | https://security.gentoo.org/glsa/201412-09 | 38.0.0 |