CVE-2007-3210

Name of the Vulnerable Software and Affected Versions: Cellosoft Tokens Object version 2.0.0.6

Description: The issue is related to a stack-based buffer overflow in the nptoken.mox component of the Cellosoft Tokens Object 2.0.0.6 extension for Vitalize. This allows remote attackers to execute arbitrary code by providing a long string argument to the RemoveChr method.

Recommendations: For version 2.0.0.6, consider disabling the RemoveChr method as a temporary workaround until a patch is available. Restrict access to the nptoken.mox component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.