CVE-2007-3794

critical

Description

Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer's Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application.

References

http://www.vupen.com/english/advisories/2007/2534

http://www.securityfocus.com/bid/24905

http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html

http://secunia.com/advisories/26025

http://osvdb.org/37851

Details

Source: Mitre, NVD

Published: 2007-07-15

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00506