CVE-2007-1327

Name: CVE-2007-1327
Creator: NVD / NIST
Published: 2007-03-07T21:19:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 9.89%

Last modified Jun 16, 2026

CVE-2007-1327 is a vulnerability of currently unknown severity. The SILC_SERVER_CMD_FUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a request without a cipher algorithm and an invalid HMAC algorithm.. EPSS estimates a 9.89% chance of exploitation in the next 30 days.

Description

The SILC_SERVER_CMD_FUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a request without a cipher algorithm and an invalid HMAC algorithm.

Metrics

EPSS Probability

9.89%

95.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-476

Affected Software

Vendor	Product	Versions
Silc	Silc-Server	1.0.2

References

http://marc.info/?l=full-disclosure&m=117320823618036&w=2Third Party Advisory
http://osvdb.org/33887Broken Link
http://secunia.com/advisories/24426Permissions Required
http://secunia.com/advisories/24431Permissions Required
http://security.gentoo.org/glsa/glsa-200703-12.xmlThird Party Advisory
http://www.securityfocus.com/bid/22846Third Party Advisory, VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/32846
http://marc.info/?l=full-disclosure&m=117320823618036&w=2Third Party Advisory
http://osvdb.org/33887Broken Link
http://secunia.com/advisories/24426Permissions Required
http://secunia.com/advisories/24431Permissions Required
http://security.gentoo.org/glsa/glsa-200703-12.xmlThird Party Advisory
http://www.securityfocus.com/bid/22846Third Party Advisory, VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/32846

Timeline

Published: Mar 7, 2007
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2007-1327?

How severe is CVE-2007-1327?

Severity scoring for CVE-2007-1327 is pending analysis. The EPSS model estimates a 9.89% probability of exploitation in the next 30 days.

How do I fix CVE-2007-1327?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-1327?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST