Lucene search

[email protected]CVE-2007-2946

HistoryMay 31, 2007 - 12:30 a.m.

CVE-2007-2946

2007-05-3100:30:00

[email protected]

web.nvd.nist.gov

cve-2007-2946

buffer overflow

leadtools

raster dialog

activex

security vulnerability

denial of service

arbitrary code execution

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.217 Low

EPSS

Percentile

96.5%

JSON

Buffer overflow in a certain ActiveX control in LeadTools Raster Dialog File_D Object (LTRDFD14e.DLL) 14.5.0.44 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) or execute arbitrary code via a long DestinationPath property value.

Affected configurations

NVD

Node

lead_technologiesleadtools_raster_dialog_file_objectMatch14.5.0.44

CPENameOperatorVersion
lead_technologies:leadtools_raster_dialog_file_objectlead technologies leadtools raster dialog file objecteq14.5.0.44

CPE	Name	Operator	Version
lead_technologies:leadtools_raster_dialog_file_object	lead technologies leadtools raster dialog file object	eq	14.5.0.44

References

moaxb.blogspot.com/2007/05/moaxb-25-leadtools-raster-dialog-filed.html

osvdb.org/36036

secunia.com/advisories/25396

shinnai.altervista.org/viewtopic.php?id=42&t_id=28

www.securityfocus.com/bid/24153

exchange.xforce.ibmcloud.com/vulnerabilities/34516

www.exploit-db.com/exploits/3986

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.217 Low

EPSS

Percentile

96.5%

JSON

Related for CVE-2007-2946

prion1 cvelist1 nvd1