Vulnerability Description
Multiple buffer overflows in the BaoFeng2 storm ActiveX control in Mps.dll allow remote attackers to have an unknown impact via a long (1) URL, (2) backImage, or (3) titleImage property value; (4) a long first argument to the advancedOpen method; a long argument to the (5) isDVDPath or (6) rawParse method; or (7) a .smpl file with a long path attribute in an item element in a PlayList.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Baofeng | Storm | 2.8 |
Related Weaknesses (CWE)
References
- http://osvdb.org/40491
- http://secunia.com/advisories/26749
- http://www.milw0rm.com/sploits/09082007-storm.zipExploit
- http://www.securityfocus.com/bid/25601Exploit
- http://www.vupen.com/english/advisories/2007/3111
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36540
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36542
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36543
- https://www.exploit-db.com/exploits/4375
- http://osvdb.org/40491
- http://secunia.com/advisories/26749
- http://www.milw0rm.com/sploits/09082007-storm.zipExploit
- http://www.securityfocus.com/bid/25601Exploit
- http://www.vupen.com/english/advisories/2007/3111
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36540
FAQ
What is CVE-2007-4816?
CVE-2007-4816 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple buffer overflows in the BaoFeng2 storm ActiveX control in Mps.dll allow remote attackers to have an unknown impact via a long (1) URL, (2) backImage, or (3) titleImage property value; (4) a l...
How severe is CVE-2007-4816?
CVE-2007-4816 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4816?
Check the references section above for vendor advisories and patch information. Affected products include: Baofeng Storm.