CVE-2007-2980
published 2007-06-01CVE-2007-2980: Heap-based buffer overflow in a certain ActiveX control in LEADTOOLS LEAD Raster ISIS Object (LTRIS14e.DLL) 14.5.0.44 allows remote attackers to cause a denial…
PriorityP429medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
4.71%
90.7th percentile
Heap-based buffer overflow in a certain ActiveX control in LEADTOOLS LEAD Raster ISIS Object (LTRIS14e.DLL) 14.5.0.44 allows remote attackers to cause a denial of service (Internet Explorer crash) or execute arbitrary code via a long DriverName property, a different ActiveX control than CVE-2007-2827.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lead_technologies | leadtools_raster_image_sdk | — | — |
| lead_technologies | leadtools_raster_isis_object | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://moaxb.blogspot.com/2007/05/moaxb-27-leadtools-raster-isis-object.htmlhttp://osvdb.org/36043http://secunia.com/advisories/25433http://www.securityfocus.com/bid/24193http://www.shinnai.altervista.org/moaxb/20070527/leadrasterisistxt.htmlhttp://www.vupen.com/english/advisories/2007/1972https://exchange.xforce.ibmcloud.com/vulnerabilities/34528http://moaxb.blogspot.com/2007/05/moaxb-27-leadtools-raster-isis-object.htmlhttp://osvdb.org/36043http://secunia.com/advisories/25433http://www.securityfocus.com/bid/24193http://www.shinnai.altervista.org/moaxb/20070527/leadrasterisistxt.htmlhttp://www.vupen.com/english/advisories/2007/1972https://exchange.xforce.ibmcloud.com/vulnerabilities/34528
2007-06-01
Published