Back to KEVs

CVE-2007-4428

Lhaz 1.33 allows remote attackers to execute arbitrary code via unknown vectors, as actively exploited in August 2007 by the Exploit-LHAZ.a gzip...

Basic Information

CVE State
PUBLISHED
Reserved Date
August 20, 2007
Published Date
August 20, 2007
Last Updated
August 07, 2024
Vendor
n/a
Product
Lhaz
Description
Lhaz 1.33 allows remote attackers to execute arbitrary code via unknown vectors, as actively exploited in August 2007 by the Exploit-LHAZ.a gzip file, a different issue than CVE-2006-4116.

CVSS Scores

CVSS v2.0

6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploit Status

Exploited in the Wild
Yes (2007-08-20 19:00:00 UTC) Source

References

http://www.securityfocus.com/bid/25351 http://osvdb.org/39629 http://vil.mcafeesecurity.com/vil/content/v_142976.htm http://secunia.com/advisories/26532 http://www.vupen.com/english/advisories/2007/2930 https://exchange.xforce.ibmcloud.com/vulnerabilities/36120 http://www.avertlabs.com/research/blog/index.php/2007/08/17/targeted-zero-day-attack-against-free-tools-lhaz/

Known Exploited Vulnerability Information

Source Added Date
CVE 2007-08-20 19:00:00 UTC

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel