CVE-2007-3829 in ActiveX
要約 (英語)
Multiple stack-based buffer overflows in (a) InterActual Player 2.60.12.0717 and (b) Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via a (1) long FailURL attribute in the IAMCE ActiveX Control (IAMCE.dll) or a (2) long URLCode attribute in the IAKey ActiveX Control (IAKey.dll). NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
予約する
2007年07月17日
ステータス
確認済み
エントリ
VulDB provides additional information and datapoints for this CVE:
| 識別子 | 脆弱性 | CWE | 悪用可 | 対策 | CVE |
|---|---|---|---|---|---|
| 85898 | IAMCE ActiveX メモリ破損 | 119 | 未実証 | Unavailable | CVE-2007-3829 |
| 37863 | Interactual Technologies InterActual Player ActiveX Control iamce.dll メモリ破損 | 121 | 未定義 | 未定義 | CVE-2007-3829 |