Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-3111 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Internet Explorer

4 documents3 sources
Severity
10.0CRITICALNVD
EPSS
51.3%
top 2.11%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Microsoft Internet ExplorerProvideo Camimage Activex Control
Timeline
PublishedJun 7
Latest updateJun 15

Description

Buffer overflow in the Provideo Camimage ActiveX control in ISSCamControl.dll 1.0.1.5, when Internet Explorer 6 is used on Windows 2000 SP4, allows remote attackers to execute arbitrary code via a long URL property value.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

🔴Vulnerability Details

1
GHSA
GHSA-g5vp-ppp7-gmw8: Buffer overflow in the Provideo Camimage ActiveX control in ISSCamControl↗2022-05-01
â–¶

💥Exploits & PoCs

2
Exploit-DB
PCMan FTP Server 2.0.7 - Buffer Overflow↗2025-06-15
â–¶
Exploit-DB
Microsoft Internet Explorer 6 / Provideo Camimage - 'ISSCamControl.dll 1.0.1.5' Remote Buffer Overflow↗2007-06-02
â–¶
CVE-2007-3111 — Microsoft vulnerability | cvebase