CVE-2007-2239

Name of the Vulnerable Software and Affected Versions AXIS Camera Control (aka CamImage) versions prior to 2.40.0.0

Description The issue is related to a stack-based buffer overflow in the SaveBMP method of the AXIS Camera Control ActiveX control. This can be exploited by remote attackers to cause a denial of service, such as crashing Internet Explorer, or to execute arbitrary code via a long argument.

Recommendations For versions prior to 2.40.0.0, update to version 2.40.0.0 or later to resolve the issue. As a temporary workaround, consider disabling the SaveBMP method in the AXIS Camera Control ActiveX control until a patch is applied.