Vulnerability Description
Multiple buffer overflows in RControl.dll in Remote Display Dev kit 1.2.1.0 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via (1) a long first argument to the connect function or (2) a long InternalServer property value, possibly involving ntdll.dll.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fruit2004 | Remote Display Development Kit | 1.2.10 |
References
- http://moaxb.blogspot.com/2007/05/moaxb-10-rcontroldll-v-1210-denial-of.html
- http://osvdb.org/36022
- http://www.securityfocus.com/bid/23914
- http://www.shinnai.altervista.org/moaxb/20070510/rControl.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34231
- https://www.exploit-db.com/exploits/3891
- http://moaxb.blogspot.com/2007/05/moaxb-10-rcontroldll-v-1210-denial-of.html
- http://osvdb.org/36022
- http://www.securityfocus.com/bid/23914
- http://www.shinnai.altervista.org/moaxb/20070510/rControl.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34231
- https://www.exploit-db.com/exploits/3891
FAQ
What is CVE-2007-2623?
CVE-2007-2623 is a vulnerability with a CVSS score of 7.8 (HIGH). Multiple buffer overflows in RControl.dll in Remote Display Dev kit 1.2.1.0 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via (1) a long first argument to the connect...
How severe is CVE-2007-2623?
CVE-2007-2623 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2623?
Check the references section above for vendor advisories and patch information. Affected products include: Fruit2004 Remote Display Development Kit.