CVE-2007-2588

Name of the Vulnerable Software and Affected Versions Office Viewer OCX ActiveX control (oa.ocx) version 3.2

Description The issue is related to multiple buffer overflows in the Office Viewer OCX ActiveX control. This can be exploited by remote attackers who send a long argument to certain functions, potentially causing a denial of service or possibly allowing the execution of arbitrary code. The affected functions include HttpDownloadFile(), Open(), OpenWebFile(), DoOleCommand(), FTPDownloadFile(), FTPUploadFile(), HttpUploadFile(), Save(), and SaveWebFile().

Recommendations For Office Viewer OCX ActiveX control (oa.ocx) version 3.2, consider disabling the affected functions until a patch is available. Restrict access to the oa.ocx control to minimize the risk of exploitation. Avoid using long arguments in the affected functions to prevent potential buffer overflows.