VYPR
Unrated severityNVD Advisory· Published Aug 28, 2007· Updated Jun 16, 2026

CVE-2007-4580

CVE-2007-4580

Description

Buffer underflow in redlight.sys in BufferZone 2.1 and 2.5 allows local users to cause a denial of service (crash) and possibly execute arbitrary code by sending a small buffer size value to the FsSetVolumeInformation IOCTL handler code with a FsSetDirectoryInformation subcode containing a large buffer.

Affected products

2
  • cpe:2.3:a:bufferzonesecurity:bufferzone:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:bufferzonesecurity:bufferzone:*:*:*:*:*:*:*:*range: >=2.1,<=2.5
    • (no CPE)range: 2.1, 2.5

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.