CVE-2007-3435

Опубликовано: 27 июн. 2007

Источник: nvd

CVSS2: 9.3

EPSS Высокий

Описание

Stack-based buffer overflow in the BeginPrint method in a certain ActiveX control in RKD Software (barcodetools.com) BarCodeAx.dll 4.9 allows remote attackers to execute arbitrary code via a long argument.

Ссылки

http://goodfellas.shellcode.com.ar/own/VULWAR200706223.txt
http://osvdb.org/37482
http://secunia.com/advisories/25788
Vendor Advisory
http://www.securityfocus.com/archive/1/472189/100/0/threaded
http://www.securityfocus.com/bid/24596
Exploit
http://www.vupen.com/english/advisories/2007/2305
https://exchange.xforce.ibmcloud.com/vulnerabilities/35011
https://www.exploit-db.com/exploits/4094
http://goodfellas.shellcode.com.ar/own/VULWAR200706223.txt
http://osvdb.org/37482
http://secunia.com/advisories/25788
Vendor Advisory
http://www.securityfocus.com/archive/1/472189/100/0/threaded
http://www.securityfocus.com/bid/24596
Exploit
http://www.vupen.com/english/advisories/2007/2305
https://exchange.xforce.ibmcloud.com/vulnerabilities/35011
https://www.exploit-db.com/exploits/4094

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rkd_software:barcode_activex:4.9:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.77432

Высокий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-gfqp-jcmw-676w

github

почти 4 года назад