CVE

CVE-2007-2787

Date: (C)2007-05-21   (M)2023-12-22

Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL ActiveX control in LeadTools Raster Thumbnail Object Library 14.5.0.44 allows remote attackers to execute arbitrary code via a long argument.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.5
Exploit Score: 10.0
Impact Score: 6.4
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL

Reference:

BID-24053

BID-24057

SECUNIA-25331

SECUNIA-25376

OSVDB-36028

OSVDB-36029

EXPLOIT-DB-3951

EXPLOIT-DB-3952

http://moaxb.blogspot.com/2007/05/moaxb-19-leadtools-thumbnail-browser.html

http://moaxb.blogspot.com/2007/05/moaxb-20-leadtools-raster-thumbnail.html

http://www.shinnai.altervista.org/moaxb/20070519/lademthumbtxt.html

http://www.shinnai.altervista.org/moaxb/20070520/leadrastertxt.html

leadtools-ltrtm14e-bo(34378)

leadtools-lttmb14e-bo(34379)