Vulnerability Description
Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL ActiveX control in LeadTools Raster Thumbnail Object Library 14.5.0.44 allows remote attackers to execute arbitrary code via a long argument.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lead Technologies | Leadtools Raster Thumbnail Object Library | 14.5.0.44 |
References
- http://moaxb.blogspot.com/2007/05/moaxb-19-leadtools-thumbnail-browser.html
- http://moaxb.blogspot.com/2007/05/moaxb-20-leadtools-raster-thumbnail.html
- http://osvdb.org/36028
- http://osvdb.org/36029
- http://secunia.com/advisories/25331
- http://secunia.com/advisories/25376
- http://www.securityfocus.com/bid/24053
- http://www.securityfocus.com/bid/24057
- http://www.shinnai.altervista.org/moaxb/20070519/lademthumbtxt.htmlExploit
- http://www.shinnai.altervista.org/moaxb/20070520/leadrastertxt.htmlExploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34378
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34379
- https://www.exploit-db.com/exploits/3951
- https://www.exploit-db.com/exploits/3952
- http://moaxb.blogspot.com/2007/05/moaxb-19-leadtools-thumbnail-browser.html
FAQ
What is CVE-2007-2787?
CVE-2007-2787 is a vulnerability with a CVSS score of 7.5 (HIGH). Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL ActiveX control in LeadTools Raster Thumbnail Object Library 14.5.0.44 allows remote attackers to exec...
How severe is CVE-2007-2787?
CVE-2007-2787 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2787?
Check the references section above for vendor advisories and patch information. Affected products include: Lead Technologies Leadtools Raster Thumbnail Object Library.