Lucene search

[email protected]CVE-2007-2656

HistoryMay 14, 2007 - 11:19 p.m.

CVE-2007-2656

2007-05-1423:19:00

[email protected]

web.nvd.nist.gov

cve-2007-2656

remote attackers

denial of service

buffer overflow

activex

vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.4 High

AI Score

Confidence

High

0.053 Low

EPSS

Percentile

93.1%

JSON

Stack-based buffer overflow in the Hewlett-Packard (HP) Magview ActiveX control in hpqvwocx.dll 1.0.0.309 allows remote attackers to cause a denial of service (application crash) and possibly have other impact via a long argument to the DeleteProfile method.

Affected configurations

NVD

Node

hphpqvwocx.dllMatch1.0.0.309

CPENameOperatorVersion
hp:hpqvwocx.dllhp hpqvwocx.dlleq1.0.0.309

CPE	Name	Operator	Version
hp:hpqvwocx.dll	hp hpqvwocx.dll	eq	1.0.0.309

References

osvdb.org/37787

www.securityfocus.com/bid/23941

exchange.xforce.ibmcloud.com/vulnerabilities/34239

www.exploit-db.com/exploits/3898

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.4 High

AI Score

Confidence

High

0.053 Low

EPSS

Percentile

93.1%

JSON

Related for CVE-2007-2656

prion1 cvelist1 nvd1