Lucene search

[email protected]CVE-2007-3703

HistoryJul 11, 2007 - 11:30 p.m.

CVE-2007-3703

2007-07-1123:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-3703

stack-based buffer overflow

activex control

zenturi program checker pro

remote code execution

8.2 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.039 Low

EPSS

Percentile

91.9%

JSON

Stack-based buffer overflow in a certain ActiveX control in sasatl.dll 1.5.0.531 in Zenturi Program Checker (ProgramChecker) Pro allows remote attackers to execute arbitrary code via a long argument to the Fill method. NOTE: this is probably a different issue than CVE-2007-2987.

CPENameOperatorVersion
zenturi:zenturi_programcheckerzenturi zenturi programcheckereq1.5.531

CPE	Name	Operator	Version
zenturi:zenturi_programchecker	zenturi zenturi programchecker	eq	1.5.531

References

archives.neohapsis.com/archives/fulldisclosure/2007-07/0180.html

osvdb.org/37707

www.exploit-db.com/exploits/4170

www.securityfocus.com/bid/24848

8.2 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.039 Low

EPSS

Percentile

91.9%

JSON

Related for CVE-2007-3703

prion3 nessus1 packetstorm1 checkpoint_advisories1 cve2