HIGH🇬🇧 English

CVE-2007-1074

CVSS 9.3v2.0pub. 2007-02-22upd. 2026-04-23

Multiple buffer overflows in NewsBin Pro 5.33 and NewsBin Pro 4.x allow user-assisted remote attackers to execute arbitrary code via a long (1) DataPath or (2) DownloadPath attributed in a (a) NBI file, or (3) a long group field in a (b) NZB file.

oryginał EN
CVSS Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
  • Dji Newsbin Pro

    APP
    Dji
    4.x5.33
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEMemory
CWE
Referencje

Powiązane podatności

CVE-2022-46415CRITICAL9.1ten sam vendor

DJI Spark 01.00.0900 allows remote attackers to prevent legitimate terminal connections by exhausting the DHCP...

CVE-2026-26673HIGH7.5ten sam vendor

An issue in DJI Mavic Mini, Spark, Mavic Air, Mini, Mini SE 0.1.00.0500 and below allows a remote attacker to ...

CVE-2020-29664HIGH7.8ten sam vendor

A command injection issue in dji_sys in DJI Mavic 2 Remote Controller before firmware version 01.00.0510 allow...

CVE-2022-29945MEDIUM4.0ten sam vendor

DJI drone devices sold in 2017 through 2022 broadcast unencrypted information about the drone operator's physi...