CVE-2007-4725

Name: CVE-2007-4725
Creator: NVD / NIST
Published: 2007-09-05T19:17:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 5.56%

Last modified Jun 16, 2026

CVE-2007-4725 is a vulnerability of currently unknown severity. Stack consumption vulnerability in AkkyWareHOUSE 7-zip32.dll before 4.42.00.04, as derived from Igor Pavlov 7-Zip before 4.53 beta, allows user-assisted remote attackers to execute arbitrary code via a long filename in an archive, leading to a heap-based buffer overflow.. EPSS estimates a 5.56% chance of exploitation in the next 30 days.

Description

Stack consumption vulnerability in AkkyWareHOUSE 7-zip32.dll before 4.42.00.04, as derived from Igor Pavlov 7-Zip before 4.53 beta, allows user-assisted remote attackers to execute arbitrary code via a long filename in an archive, leading to a heap-based buffer overflow.

Metrics

EPSS Probability

5.56%

91.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-400

Affected Software

Vendor	Product	Versions	Update
7-Zip	7-Zip	<= 4.42	—
7-Zip	7-Zip	4.43	Beta
7-Zip	7-Zip	4.44	Beta
7-Zip	7-Zip	4.45	Beta
7-Zip	7-Zip	4.46	Beta
7-Zip	7-Zip	4.47	Beta
7-Zip	7-Zip	4.48	Beta
7-Zip	7-Zip	4.49	Beta
7-Zip	7-Zip	4.50	Beta
7-Zip	7-Zip	4.51	Beta
7-Zip	7-Zip	4.52	Beta

References

http://akky.cjb.net/security/7-zip3.txtBroken Link
http://jvn.jp/jp/JVN%2362868899/index.htmlThird Party Advisory
http://osvdb.org/40482Broken Link
http://secunia.com/advisories/26624Third Party Advisory
http://sourceforge.net/project/shownotes.php?release_id=535160&group_id=14481Product, Third Party Advisory
http://www.securityfocus.com/bid/25545Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2007/3086Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/36459Third Party Advisory, VDB Entry
http://akky.cjb.net/security/7-zip3.txtBroken Link
http://jvn.jp/jp/JVN%2362868899/index.htmlThird Party Advisory
http://osvdb.org/40482Broken Link
http://secunia.com/advisories/26624Third Party Advisory
http://sourceforge.net/project/shownotes.php?release_id=535160&group_id=14481Product, Third Party Advisory
http://www.securityfocus.com/bid/25545Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2007/3086Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/36459Third Party Advisory, VDB Entry

Timeline

Published: Sep 5, 2007
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2007-4725?

How severe is CVE-2007-4725?

Severity scoring for CVE-2007-4725 is pending analysis. The EPSS model estimates a 5.56% probability of exploitation in the next 30 days.

How do I fix CVE-2007-4725?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-4725?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST