1. Home
  2. CVE Database
  3. CVE-2007-2853
HIGH · 10.0

CVE-2007-2853

The VCDAPILibApi ActiveX control in vc9api.DLL 9.0.0.57 in Virtual CD 9.0.0.2 allows remote attackers to execute arbitrary commands via a command line in the first argument to the VCDLaunchAndWait fun...

Vulnerability Description

The VCDAPILibApi ActiveX control in vc9api.DLL 9.0.0.57 in Virtual CD 9.0.0.2 allows remote attackers to execute arbitrary commands via a command line in the first argument to the VCDLaunchAndWait function.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
H\+HVcdapilibapi Activex Control9.0.0.57
H\+HVirtual Cd9.0.0.2

References

FAQ

What is CVE-2007-2853?

CVE-2007-2853 is a vulnerability with a CVSS score of 10.0 (HIGH). The VCDAPILibApi ActiveX control in vc9api.DLL 9.0.0.57 in Virtual CD 9.0.0.2 allows remote attackers to execute arbitrary commands via a command line in the first argument to the VCDLaunchAndWait fun...

How severe is CVE-2007-2853?

CVE-2007-2853 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-2853?

Check the references section above for vendor advisories and patch information. Affected products include: H\+H Vcdapilibapi Activex Control, H\+H Virtual Cd.