Vulnerabilities > CVE-2007-2576 - Buffer Overflow vulnerability in East Wind Software Advdaudio.Ocx 1.5.1.1
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Buffer overflow in the East Wind Software advdaudio.ocx 1.5.1.1 ActiveX control allows user-assisted remote attackers to execute arbitrary code via a long OpenDVD property value. NOTE: this issue might be related to CVE-2007-0976.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | East Wind Software (advdaudio.ocx 1.5.1.1) Local BoF Exploit. CVE-2007-2576. Local exploit for windows platform |
| file | exploits/windows/local/3856.html |
| id | EDB-ID:3856 |
| last seen | 2016-01-31 |
| modified | 2007-05-05 |
| platform | windows |
| port | |
| published | 2007-05-05 |
| reporter | shinnai |
| source | https://www.exploit-db.com/download/3856/ |
| title | East Wind Software advdaudio.ocx 1.5.1.1 Local BoF Exploit |
| type | local |
References
- http://moaxb.blogspot.com/2007/05/moaxb-05-east-wind-software.html
- http://moaxb.blogspot.com/2007_05_05_archive.html
- http://osvdb.org/34337
- http://www.securityfocus.com/bid/23833
- http://www.shinnai.altervista.org/moaxb/20070505/east.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34119
- https://www.exploit-db.com/exploits/3856