Vulnerability Description
Stack-based buffer overflow in the SPIDERLib.Loader ActiveX control (Spider90.ocx) 9.1.0.4353 in TestDirector (TD) for Mercury Quality Center 9.0 before Patch 12.1, and 8.2 SP1 before Patch 32, allows remote attackers to execute arbitrary code via a long ProgColor property.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Mercury Quality Center | 8.2 |
Related Weaknesses (CWE)
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00901872
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=497
- http://secunia.com/advisories/24692
- http://securitytracker.com/id?1017835
- http://webnotes.merc-int.com/patches.nsf/c4d68388a23535dc422567d0004bbae2/7a0f7f
- http://webnotes.merc-int.com/patches.nsf/c4d68388a23535dc422567d0004bbae2/cf109e
- http://www.kb.cert.org/vuls/id/589097US Government Resource
- http://www.securityfocus.com/bid/23239
- http://www.vupen.com/english/advisories/2007/1185Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33353
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00901872
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=497
- http://secunia.com/advisories/24692
- http://securitytracker.com/id?1017835
- http://webnotes.merc-int.com/patches.nsf/c4d68388a23535dc422567d0004bbae2/7a0f7f
FAQ
What is CVE-2007-1819?
CVE-2007-1819 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in the SPIDERLib.Loader ActiveX control (Spider90.ocx) 9.1.0.4353 in TestDirector (TD) for Mercury Quality Center 9.0 before Patch 12.1, and 8.2 SP1 before Patch 32, allows...
How severe is CVE-2007-1819?
CVE-2007-1819 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1819?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Mercury Quality Center.