ID CVE-2007-2918
Summary Multiple stack-based buffer overflows in ActiveX controls (1) VibeC in (a) vibecontrol.dll, (2) CallManager and (3) ViewerClient in (b) StarClient.dll, (4) ComLink in (c) uicomlink.dll, and (5) WebCamXMP in (d) wcamxmp.dll in Logitech VideoCall allow remote attackers to cause a denial of service (browser crash) and execute arbitrary code via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:logitech:videocall:*:*:*:*:*:*:*:*
    cpe:2.3:a:logitech:videocall:*:*:*:*:*:*:*:*
CVSS
Base: 6.8 (as of 29-07-2017 - 01:31)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:P/I:P/A:P
refmap via4
bid 24254
cert-vn VU#330289
osvdb
  • 36820
  • 36821
  • 36822
  • 36823
  • 36824
secunia 25514
vupen ADV-2007-2018
xf logitech-multiple-activex-bo(34658)
Last major update 29-07-2017 - 01:31
Published 01-06-2007 - 01:30
Last modified 29-07-2017 - 01:31
Back to Top