CVE Vulnerability

CVE-2007-2919

Multiple stack-based buffer overflows in the FViewerLoading ActiveX control (FlipViewerX.dll) in E-Book Systems FlipViewer before 4.1 allow remote attackers to cause a denial of service (crash) or execute arbitrary code via long (1) UID, (2) Opf, (3) PAGENO, (4) LaunchMode, (5) SubID, (6) BookID, (7) LibraryID, (8) SubURL, and (9) LoadOpf properties.

9.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.kb.cert.org/vuls/id/449089 US Government Resource
http://www.securityfocus.com/bid/24328 Patch
http://secunia.com/advisories/25568 Patch Vendor Advisory
http://www.vupen.com/english/advisories/2007/2081
http://osvdb.org/37042
https://exchange.xforce.ibmcloud.com/vulnerabilities/34742
Configurations

Configuration 1

cpe:2.3:a:e-book_systems:flipviewer:*:*:*:*:*:*:*:*
Information

Published : 2007-06-06 10:30

Updated : 2017-07-29 01:31

NVD link : CVE-2007-2919

Mitre link : CVE-2007-2919

Products Affected
No products.
CWE
NVD-CWE-Other