CVE-2007-2787 - Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL Ac

CVE-2007-2787

Summary

Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL ActiveX control in LeadTools Raster Thumbnail Object Library 14.5.0.44 allows remote attackers to execute arbitrary code via a long argument.

References

Vulnerable Configurations

cpe:2.3:a:lead_technologies:leadtools_raster_thumbnail_object_library:14.5.0.44:*:*:*:*:*:*:*
cpe:2.3:a:lead_technologies:leadtools_raster_thumbnail_object_library:14.5.0.44:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 11-10-2017 - 01:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	24053 24057
exploit-db	3951 3952
misc	http://moaxb.blogspot.com/2007/05/moaxb-19-leadtools-thumbnail-browser.html http://moaxb.blogspot.com/2007/05/moaxb-20-leadtools-raster-thumbnail.html http://www.shinnai.altervista.org/moaxb/20070519/lademthumbtxt.html http://www.shinnai.altervista.org/moaxb/20070520/leadrastertxt.html
osvdb	36028 36029
secunia	25331 25376
xf	leadtools-ltrtm14e-bo(34378) leadtools-lttmb14e-bo(34379)

Last major update

11-10-2017 - 01:32

Published

21-05-2007 - 23:30

Last modified

11-10-2017 - 01:32