PT-2007-4395 · Microsoft+1 · Windows 2000+2

Rgod

Published

2007-06-07

Updated

2021-07-23

CVE-2007-3111

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Provideo Camimage ActiveX control version 1.0.1.5 Internet Explorer 6 on Windows 2000 SP4

Description: The issue is related to a buffer overflow in the Provideo Camimage ActiveX control. This can be exploited by remote attackers to execute arbitrary code via a long URL property value.

Recommendations: For Provideo Camimage ActiveX control version 1.0.1.5, consider disabling the control until a patch is available. For Internet Explorer 6 on Windows 2000 SP4, restrict access to potentially malicious URLs to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-3111

Affected Products

Internet Explorer

Provideo Camimage Activex Control

Windows 2000

PT-2007-4395 · Microsoft+1 · Windows 2000+2

CVE-2007-3111

Related Identifiers

Affected Products

References · 7