Vulnerability Description
Multiple stack-based buffer overflows in the FViewerLoading ActiveX control (FlipViewerX.dll) in E-Book Systems FlipViewer before 4.1 allow remote attackers to cause a denial of service (crash) or execute arbitrary code via long (1) UID, (2) Opf, (3) PAGENO, (4) LaunchMode, (5) SubID, (6) BookID, (7) LibraryID, (8) SubURL, and (9) LoadOpf properties.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| E-Book Systems | Flipviewer | <= 4.0 |
References
- http://osvdb.org/37042
- http://secunia.com/advisories/25568PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/449089US Government Resource
- http://www.securityfocus.com/bid/24328Patch
- http://www.vupen.com/english/advisories/2007/2081
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34742
- http://osvdb.org/37042
- http://secunia.com/advisories/25568PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/449089US Government Resource
- http://www.securityfocus.com/bid/24328Patch
- http://www.vupen.com/english/advisories/2007/2081
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34742
FAQ
What is CVE-2007-2919?
CVE-2007-2919 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple stack-based buffer overflows in the FViewerLoading ActiveX control (FlipViewerX.dll) in E-Book Systems FlipViewer before 4.1 allow remote attackers to cause a denial of service (crash) or exe...
How severe is CVE-2007-2919?
CVE-2007-2919 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2919?
Check the references section above for vendor advisories and patch information. Affected products include: E-Book Systems Flipviewer.