VYPR
← All advisories
Unrated severityNVD Advisory· Published Mar 30, 2007· Updated Apr 23, 2026

CVE-2007-1677

CVE-2007-1677

Description

Multiple buffer overflows in the ISO network protocol support in the NetBSD kernel 2.0 through 4.0_BETA2, and NetBSD-current before 20070329, allow local users to execute arbitrary code via long parameters to certain functions, as demonstrated by a long sockaddr structure argument to the clnp_route function.

Affected products

14
  • Navision Software/Navision Financials Server
    cpe:2.3:o:navision_software:navision_financials_server:3.0:*:*:*:*:*:*:*
  • NetBSD/NetBSD12 versions
    cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.0.3:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.1:rc1:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.1:rc3:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:4.0:beta:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:4.0:beta2:*:*:*:*:*:*
  • NetBSD/NetBSD Kernelllm-create
    Range: >=2.0, <=4.0_BETA2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.