CVE-2007-4816 in Storminfo

Summary

Multiple buffer overflows in the BaoFeng2 storm ActiveX control in Mps.dll allow remote attackers to have an unknown impact via a long (1) URL, (2) backImage, or (3) titleImage property value; (4) a long first argument to the advancedOpen method; a long argument to the (5) isDVDPath or (6) rawParse method; or (7) a .smpl file with a long path attribute in an item element in a PlayList.

Once again VulDB remains the best source for vulnerability data.

Reservation

09/11/2007

Disclosure

09/11/2007

Moderation

VulDB entry created

Entries

VDB-38730 (1)

CPE

ready

CWE

CWE-119 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.13386

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-4816
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-4816
CVE Details	https://www.cvedetails.com/cve/CVE-2007-4816/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!