CVE-2007-3479 - Stack-based buffer overflow in PCSoft WinDEV 11 (01F110053p) allows user-assisted remote attackers t

CVE-2007-3479

Summary

Stack-based buffer overflow in PCSoft WinDEV 11 (01F110053p) allows user-assisted remote attackers to execute arbitrary code via a long string in the "used DLL" field in a WDP project file.

References

http://osvdb.org/38910
http://www.securityfocus.com/archive/1/472438/100/0/threaded
http://www.securityfocus.com/bid/24693
https://www.securinfos.info/english/security-advisories-alerts/20070628_PCSoft.WinDEV.wdp.Project.File.Handling.Buffer.Overflow.php

Vulnerable Configurations

cpe:2.3:a:pc_soft:windev:11:*:*:*:*:*:*:*
cpe:2.3:a:pc_soft:windev:11:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 16-10-2018 - 16:50)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

refmap via4

bid	24693
bugtraq	20070628 [SecurInfos] PCSoft WinDEV .wdp Project File Handling Buffer Overflow
misc	https://www.securinfos.info/english/security-advisories-alerts/20070628_PCSoft.WinDEV.wdp.Project.File.Handling.Buffer.Overflow.php
osvdb	38910

Last major update

16-10-2018 - 16:50

Published

28-06-2007 - 18:30

Last modified

16-10-2018 - 16:50