CVE-2007-1658

EPSS 76.65% · P99 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-1658

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Windows Mail in Microsoft Windows Vista might allow user-assisted remote attackers to execute certain programs via a link to a (1) local file or (2) UNC share pathname in which there is a directory with the same base name as an executable program at the same level, as demonstrated using C:/windows/system32/winrm (winrm.cmd) and migwiz (migwiz.exe).

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft Windows Vista Mail客户端本地文件执行漏洞(MS07-034)

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Windows Mail是Windows Vista所捆绑的默认邮件客户端。 Vista Windows Mail在处理邮件中的链接时存在漏洞，远程攻击者可能利用此漏洞在用户机器上执行恶意代码。如果文件夹中存在相同名称的可执行文件的话，则如果用户点击了邮件中恶意链接的话，Vistas Mail客户端就会执行该可执行文件。假设C:\盘下存在名为blah的文件夹，同时该盘下还存在名为blah.bat的批处理脚本，则如果用户点击了邮件中目标设置为C:\blah的URL的话，就会未经提示执行批处理脚本。例如，

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-1658

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-1658

请登录查看更多情报信息。

http://isc.sans.org/diary.html?storyid=2507x_refsource_MISC
http://news.com.com/2100-1002_3-6170133.htmlx_refsource_MISC
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9014194x_refsource_MISC
http://www.securityfocus.com/bid/23103vdb-entryx_refsource_BID
http://secunia.com/advisories/25639third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id?1017816vdb-entryx_refsource_SECTRACK
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-034vendor-advisoryx_refsource_MS
http://www.us-cert.gov/cas/techalerts/TA07-163A.htmlthird-party-advisoryx_refsource_CERT
http://www.securityfocus.com/archive/1/471947/100/0/threadedvendor-advisoryx_refsource_HP
http://www.vupen.com/english/advisories/2007/2154vdb-entryx_refsource_VUPEN
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1861vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/33167vdb-entryx_refsource_XF
http://archives.neohapsis.com/archives/fulldisclosure/2007-03/0344.htmlmailing-listx_refsource_FULLDISC
http://archives.neohapsis.com/archives/fulldisclosure/2007-03/0346.htmlmailing-listx_refsource_FULLDISC
http://archives.neohapsis.com/archives/fulldisclosure/2007-03/0345.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2007-1658

Same Patch Batch · n/a · 2007-03-24 · 20 CVEs total

CVE-2007-1651		OpenID 未明跨站请求伪造漏洞
CVE-2007-1667		X.Org XGetPixel/XInitImage多个整数溢出漏洞
CVE-2007-1666		DataRescue IDA Pro绕过口令认证执行远程调试漏洞
CVE-2007-1465		DProxy远程缓冲区溢出漏洞
CVE-2007-1657		MiniGZip File_Compress函数本地溢出漏洞
CVE-2007-1656		Katalog Plyt Audio index.php SQL注入漏洞
CVE-2007-1655		TinyMUX fun_ladd()函数缓冲区溢出漏洞
CVE-2007-1654		NetSieben SSH Library(ne7ssh) ne7ssh_sftp.cpp 缓冲区溢出漏洞
CVE-2007-1653		GlowWorm DNS响应 FW拒绝服务攻击漏洞
CVE-2007-1652		OpenID 强制用户登录信息泄露漏洞
CVE-2007-1642		ManageEngine Firewall Analyzer 未明漏洞
CVE-2007-1650		pcapsipdump pcapsipdump.cpp SIP信息包拒绝服务攻击漏洞
CVE-2007-1649		PHP S数据类型序列化格式堆信息泄露漏洞
CVE-2007-1648		0IRC IRC Client IRC服务器远程拒绝服务漏洞
CVE-2007-1647		Moodle web根目录信息泄露漏洞
CVE-2007-1646		SubHub 多个跨站脚本攻击漏洞
CVE-2007-1645		Microsoft Windows 2000 FutureSoft TFTP Server 2000 缓冲区溢出漏洞
CVE-2007-1644		Microsoft Windows 动态DNS更新机制服务器拒绝服务攻击漏洞
CVE-2007-1643		LMS 多个远程文件包含漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2007-1658

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2007-1658

I. Basic Information for CVE-2007-1658

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2007-1658

III. Intelligence Information for CVE-2007-1658

Same Patch Batch · n/a · 2007-03-24 · 20 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2007-1658

Leave a comment