PT-2007-3056 · Calisto · Callisto Photoparade Player+1

Published

2007-09-14

Updated

2017-07-29

CVE-2007-1688

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Callisto PhotoParade Player (affected versions not specified)

Description: The issue is related to a buffer overflow in the PhPInfo ActiveX control, which is located in the PhPCtrl.dll file. This buffer overflow can be triggered via the FileVersionof property, allowing remote attackers to execute arbitrary code.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2007-1688

Affected Products

Callisto Photoparade Player

Phpctrl.Dll

PT-2007-3056 · Calisto · Callisto Photoparade Player+1

CVE-2007-1688

Weakness Enumeration

Related Identifiers

Affected Products

References · 7