Vulnerability Description
Buffer overflow in the PhPInfo ActiveX control in PhPCtrl.dll in Callisto PhotoParade Player allows remote attackers to execute arbitrary code via the FileVersionof property.
CVSS Score
9.3
HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Callisto | Photoparade Player | All versions |
Related Weaknesses (CWE)
References
- http://osvdb.org/37731
- http://secunia.com/advisories/26789
- http://www.kb.cert.org/vuls/id/171449US Government Resource
- http://www.securityfocus.com/bid/25654
- http://www.vupen.com/english/advisories/2007/3138
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36588
- http://osvdb.org/37731
- http://secunia.com/advisories/26789
- http://www.kb.cert.org/vuls/id/171449US Government Resource
- http://www.securityfocus.com/bid/25654
- http://www.vupen.com/english/advisories/2007/3138
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36588
FAQ
What is CVE-2007-1688?
CVE-2007-1688 is a vulnerability with a CVSS score of 9.3 (HIGH). Buffer overflow in the PhPInfo ActiveX control in PhPCtrl.dll in Callisto PhotoParade Player allows remote attackers to execute arbitrary code via the FileVersionof property.
How severe is CVE-2007-1688?
CVE-2007-1688 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1688?
Check the references section above for vendor advisories and patch information. Affected products include: Callisto Photoparade Player.