Lucene search

[email protected]CVE-2007-3111

HistoryJun 07, 2007 - 9:30 p.m.

CVE-2007-3111

2007-06-0721:30:00

[email protected]

web.nvd.nist.gov

buffer overflow

provideo camimage

activex control

arbitrary code execution

security vulnerability

cve-2007-3111

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

High

0.36 Low

EPSS

Percentile

97.2%

JSON

Buffer overflow in the Provideo Camimage ActiveX control in ISSCamControl.dll 1.0.1.5, when Internet Explorer 6 is used on Windows 2000 SP4, allows remote attackers to execute arbitrary code via a long URL property value.

Affected configurations

NVD

Node

microsoftwindows_2000sp4

AND

microsoftinternet_explorerMatch6

provideocamimage_activex_controlMatch1.0.1.5

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq6
provideo:camimage_activex_controlprovideo camimage activex controleq1.0.1.5

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	6
provideo:camimage_activex_control	provideo camimage activex control	eq	1.0.1.5

References

osvdb.org/36962

secunia.com/advisories/25479

www.securityfocus.com/bid/24279

www.vupen.com/english/advisories/2007/2042

exchange.xforce.ibmcloud.com/vulnerabilities/34691

www.exploit-db.com/exploits/4023

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

High

0.36 Low

EPSS

Percentile

97.2%

JSON

Related for CVE-2007-3111

nvd1 checkpoint_advisories1 prion1 cvelist1