PT-2007-4395 · Microsoft+1 · Windows 2000+2

Rgod

Publicado

2007-06-07

Atualizado

2021-07-23

CVE-2007-3111

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Provideo Camimage ActiveX control version 1.0.1.5 Internet Explorer 6 on Windows 2000 SP4

Description: The issue is related to a buffer overflow in the Provideo Camimage ActiveX control. This can be exploited by remote attackers to execute arbitrary code via a long URL property value.

Recommendations: For Provideo Camimage ActiveX control version 1.0.1.5, consider disabling the control until a patch is available. For Internet Explorer 6 on Windows 2000 SP4, restrict access to potentially malicious URLs to minimize the risk of exploitation.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-3111

Produtos afetados

Internet Explorer

Provideo Camimage Activex Control

Windows 2000

PT-2007-4395 · Microsoft+1 · Windows 2000+2

CVE-2007-3111

Identificadores relacionados

Produtos afetados

Referências · 7