Lucene search

[email protected]CVE-2007-2895

HistoryMay 30, 2007 - 1:30 a.m.

CVE-2007-2895

2007-05-3001:30:00

[email protected]

web.nvd.nist.gov

cve-2007-2895

buffer overflow

activex control

leadtools

raster dialog file

object

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.224 Low

EPSS

Percentile

96.5%

JSON

Buffer overflow in a certain ActiveX control in LTRDF14e.DLL 14.5.0.44 in LeadTools Raster Dialog File Object allows remote attackers to execute arbitrary code via a long Directory property value.

Affected configurations

NVD

Node

lead_technologiesleadtools_raster_dialog_file_objectMatch14.5.0.44

CPENameOperatorVersion
lead_technologies:leadtools_raster_dialog_file_objectlead technologies leadtools raster dialog file objecteq14.5.0.44

CPE	Name	Operator	Version
lead_technologies:leadtools_raster_dialog_file_object	lead technologies leadtools raster dialog file object	eq	14.5.0.44

References

moaxb.blogspot.com/2007/05/moaxb-24-leadtools-raster-dialog-file.html

osvdb.org/36035

secunia.com/advisories/25381

shinnai.altervista.org/viewtopic.php?id=42&t_id=27

www.securityfocus.com/bid/24133

www.shinnai.altervista.org/moaxb/20070524/leaddfotxt.html

exchange.xforce.ibmcloud.com/vulnerabilities/34478

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.224 Low

EPSS

Percentile

96.5%

JSON

Related for CVE-2007-2895

cvelist1 nvd1 prion1