CVE-2007-1891

Stack-based buffer overflow in the GetPrivateProfileSectionW function in Akamai Technologies Download Manager ActiveX Control (DownloadManagerV2.ocx) after 2.0.4.4 but before 2.2.1.0 allows remote attackers to execute arbitrary code, related to misinterpretation of the nSize parameter as a byte count instead of a wide character count.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=514	Patch Vendor Advisory
http://www.securityfocus.com/bid/23522
http://www.kb.cert.org/vuls/id/120241	US Government Resource
http://www.securitytracker.com/id?1017925
http://secunia.com/advisories/24900
http://www.osvdb.org/34323
http://www.vupen.com/english/advisories/2007/1415
http://www.securityfocus.com/archive/1/465908/100/0/threaded

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:akamai_technologies:download_manager:2.2.0.0:*:*:*:*:*:*:*

Information

Published : 2007-04-17 20:19

Updated : 2018-10-16 09:41

NVD link : CVE-2007-1891

Mitre link : CVE-2007-1891

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

akamai_technologies

download_manager

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=514", "name": "20070416 Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability", "tags": ["Patch", "Vendor Advisory"], "refsource": "IDEFENSE"}, {"url": "http://www.securityfocus.com/bid/23522", "name": "23522", "tags": [], "refsource": "BID"}, {"url": "http://www.kb.cert.org/vuls/id/120241", "name": "VU#120241", "tags": ["US Government Resource"], "refsource": "CERT-VN"}, {"url": "http://www.securitytracker.com/id?1017925", "name": "1017925", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/24900", "name": "24900", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.osvdb.org/34323", "name": "34323", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.vupen.com/english/advisories/2007/1415", "name": "ADV-2007-1415", "tags": [], "refsource": "VUPEN"}, {"url": "http://www.securityfocus.com/archive/1/465908/100/0/threaded", "name": "20070416 Akamai Technologies Security Advisory 2007-0001", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Stack-based buffer overflow in the GetPrivateProfileSectionW function in Akamai Technologies Download Manager ActiveX Control (DownloadManagerV2.ocx) after 2.0.4.4 but before 2.2.1.0 allows remote attackers to execute arbitrary code, related to misinterpretation of the nSize parameter as a byte count instead of a wide character count."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-1891", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2007-04-18T03:19Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:akamai_technologies:download_manager:2.2.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-16T16:41Z"}