CVE-2007-2564
published 2007-05-09CVE-2007-2564: Multiple stack-based buffer overflows in the Sienzo Digital Music Mentor (DMM) 2.6.0.4 ActiveX control (DSKernel2.dll) allow remote attackers to execute…
PriorityP339critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
4.76%
90.8th percentile
Multiple stack-based buffer overflows in the Sienzo Digital Music Mentor (DMM) 2.6.0.4 ActiveX control (DSKernel2.dll) allow remote attackers to execute arbitrary code via a long argument to the (1) LockModules or (2) UnlockModule function.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sienzo | digital_music_mentor | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-8r6h-xfvr-p56w: Multiple stack-based buffer overflows in the Sienzo Digital Music Mentor (DMM) 2
ghsa_unreviewed·2022-05-01
CVE-2007-2564 [HIGH] GHSA-8r6h-xfvr-p56w: Multiple stack-based buffer overflows in the Sienzo Digital Music Mentor (DMM) 2
Multiple stack-based buffer overflows in the Sienzo Digital Music Mentor (DMM) 2.6.0.4 ActiveX control (DSKernel2.dll) allow remote attackers to execute arbitrary code via a long argument to the (1) LockModules or (2) UnlockModule function.
GHSA
GHSA-5cqh-65ph-mxcx: Buffer overflow in the UnlockSupport function in the LockModules subsystem in a certain ActiveX control in ltmm15
ghsa_unreviewed·2022-05-01·CVSS 10.0
CVE-2007-2763 [CRITICAL] GHSA-5cqh-65ph-mxcx: Buffer overflow in the UnlockSupport function in the LockModules subsystem in a certain ActiveX control in ltmm15
Buffer overflow in the UnlockSupport function in the LockModules subsystem in a certain ActiveX control in ltmm15.dll in Sienzo Digital Music Mentor (DMM) 2.6.0.4 allows remote attackers to execute arbitrary code via a long string in the second argument, a different issue than CVE-2007-2564.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://moaxb.blogspot.com/2007_05_06_archive.htmlhttp://osvdb.org/34338http://www.securityfocus.com/bid/23838http://www.shinnai.altervista.org/moaxb/20070506/sienzo.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/34120http://moaxb.blogspot.com/2007_05_06_archive.htmlhttp://osvdb.org/34338http://www.securityfocus.com/bid/23838http://www.shinnai.altervista.org/moaxb/20070506/sienzo.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/34120
2007-05-09
Published