Lucene search
HistoryApr 06, 2007 - 1:19 a.m.
CVE-2007-1684
cve-2007-1684
security
solidworks
activex
remote code execution
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
High
0.141 Low
EPSS
Percentile
95.7%
The Run function in SolidWorks sldimdownload ActiveX control in sldimdownload.dll before 16.0.0.6 allows remote attackers to execute arbitrary commands via the (1) installerpath and (2) applicationarguments arguments.
Affected configurations
Node
solidworkssldimdownload_activex_controlMatch16.0.0.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| solidworks:sldimdownload_activex_control | solidworks sldimdownload activex control | eq | 16.0.0.5 |
Related
nessus
nessus
SolidWorks Sldimdownload ActiveX Control Arbitrary Code Execution
2007-04-04 00:00:00
securityvulns
securityvulns
SolidWorks ActiveX buffer overflow
2007-04-08 00:00:00
cert
cert
SolidWorks sldimdownload ActiveX control fails to restrict access to methods
2007-04-03 00:00:00
prion
prion
Code injection
2007-04-06 01:19:00
nvd
nvd
CVE-2007-1684
2007-04-06 01:19:00
cvelist
cvelist
CVE-2007-1684
2007-04-06 01:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
High
0.141 Low
EPSS
Percentile
95.7%
Related for CVE-2007-1684