Lucene search

[email protected]CVE-2007-5911

HistoryNov 10, 2007 - 2:46 a.m.

CVE-2007-5911

2007-11-1002:46:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2007-5911

buffer overflow

axmetastream

activex

arbitrary code execution

viewpoint media player

8.6 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.163 Low

EPSS

Percentile

95.9%

JSON

Multiple stack-based buffer overflows in the AxMetaStream ActiveX control in AxMetaStream.dll 3.3.2.26 in Viewpoint Media Player 3.2 allow remote attackers to execute arbitrary code via a long string argument to the (1) BroadcastKey, (2) BroadcastKeyFileURL, (3) Component, (4) ComponentClassID, (5) ComponentFileName, (6) ExtraProperty, (7) Properties, (8) RequiredVersions, (9) Source, or (10) XMLText method.

CPENameOperatorVersion
viewpoint:media_playerviewpoint media playereq3.2

CPE	Name	Operator	Version
viewpoint:media_player	viewpoint media player	eq	3.2

References

osvdb.org/40268

shinnai.altervista.org/exploits/txt/TXT_dolp8rQrZmWLlINruy0o.html

www.securityfocus.com/bid/26356

exchange.xforce.ibmcloud.com/vulnerabilities/38287

www.exploit-db.com/exploits/4610

8.6 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.163 Low

EPSS

Percentile

95.9%

JSON

Related for CVE-2007-5911

prion1