CVE-2007-2938

Loading...

General

Score:10.0/10.0
Severity:High
Category:N/A
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 31/05/07 - Updated on 11/10/17

Description

Buffer overflow in the BaseRunner ActiveX control in the Ademco ATNBaseLoader100 Module (ATNBaseLoader100.dll) 5.4.0.6, when Internet Explorer 6 is used, allows remote attackers to execute arbitrary code via a long argument to the (1) Send485CMD method, and possibly the (2) SetLoginID, (3) AddSite, (4) SetScreen, and (5) SetVideoServer methods.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2007-2938

Exploits

Exploit-DBEDB-3993
SecurityFocusBID-24172

Relative technologies

VendorProduct
honeywellademco_atnbaseloader100_module
microsoftie

Share this vulnerability with:

Twitter Facebook LinkedIn Mail