|
|
CVE Reference: CVE-2007-2495 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-2495 |
|
|
Description: Multiple stack-based buffer overflows in the ExcelOCX ActiveX control in ExcelViewer.ocx 3.1.0.6 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) Save, (6) SaveWebFile, (7) HttpDownloadFile, (8) Open, or (9) OpenWebFile property value. NOTE: some of these details are obtained from third party information. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/34011 SAID Secunia Advisory: SA25077 OSVDB 34333 MISC http://moaxb.blogspot.com/2007/05/moaxb-02-excelviewerocx-v-31-multiple.html MILW0RM http://www.milw0rm.com/exploits/3830 BID 23755 |
|
| Return to the previous page. |
