CVE-2007-1682

Multiple stack-based buffer overflows in the FileManager ActiveX control in SAFmgPws.dll in SoftArtisans XFile before 2.4.0 allow remote attackers to execute arbitrary code via unspecified calls to the (1) BuildPath, (2) GetDriveName, (3) DriveExists, or (4) DeleteFile method.

Link	Resource
http://support.softartisans.com/Support-114.aspx
http://www.kb.cert.org/vuls/id/914785	US Government Resource
http://secunia.com/advisories/31615	Vendor Advisory
http://www.securityfocus.com/bid/30826

Configuration 1

cpe:2.3:a:softartisans:xfile:1.0.8:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.1.5:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.2.4:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.0:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.1.1:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.1.6:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.0.3:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.1.5:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.1.6:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.0.6:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.1.4:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.0.7:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.1.2:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.1.7:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.1:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.1.3:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.1.7:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.1.3:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:*:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.2.3:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.1.4:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.0.2:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:2.0:*:*:*:*:*:*:* cpe:2.3:a:softartisans:xfile:1.01:*:*:*:*:*:*:*

---

Published : 2008-08-27 08:41

Updated : 2008-09-11 12:51

---

NVD link : CVE-2007-1682

Mitre link : CVE-2007-1682

No products.

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer