Lucene search
K

3 matches found

seebug.org
seebug.org
added 2008/03/01 12:0 a.m.33 views

activePDF服务器报文处理远程堆溢出漏洞

BUGTRAQ ID: 28013 CVECAN ID: CVE-2007-5397 activePDF服务器用于为企业或Web应用提供集成的PDF生成和动态PDF转换功能。 activePDF Server服务(APServer.exe)在处理畸形客户端数据时存在堆溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 如果用户连接到了该服务(默认端口53535/TCP)并在发送的报文中指定的大小小于之后数据的实际大小的话,就可能触发这个溢出,导致执行任意指令。 activePDF activePDF 3.8.5.14 activePDF activePDF 3.8.4 厂商补丁:...

7.5CVSS6.4AI score0.02872EPSS
Exploits1
NVD
NVD
added 2008/02/28 8:44 p.m.13 views

CVE-2007-5397

Heap-based buffer overflow in the activePDF Server service aka APServer.exe in activePDF Server 3.8.4 and 3.8.5.14, and possibly other versions before 3.8.6.16, allows remote attackers to execute arbitrary code via a packet with a size field that is less than the actual size of the data...

7.5CVSS8AI score0.02872EPSS
Exploits1References3
CVE
CVE
added 2008/02/28 8:0 p.m.54 views

CVE-2007-5397

CVE-2007-5397 describes a heap-based buffer overflow in the activePDF Server (APServer.exe) used by activePDF Server products. Vulnerable versions include 3.8.4 and 3.8.5.14, and possibly other versions before 3.8.6.16. The flaw allows a remote attacker to execute arbitrary code by sending a craf...

7.5CVSS8.1AI score0.02872EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder