Vulnerabilities > CVE-2007-2648 - Buffer Overflow vulnerability in Clever Components Clever Database Comparer 2.2

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
clever-components
critical
exploit available

Summary

Stack-based buffer overflow in the Clever Database Comparer 2.2 ActiveX control (comparerax.ocx) allows remote attackers to execute arbitrary code via a long argument to the ConnectToDatabase function.

Vulnerable Configurations

Part Description Count
Application
Clever_Components
1

Exploit-Db

descriptionClever Database Comparer ActiveX 2.2 Remote Buffer Overflow PoC. CVE-2007-2648. Dos exploit for windows platform
idEDB-ID:3921
last seen2016-01-31
modified2007-05-14
published2007-05-14
reportershinnai
sourcehttps://www.exploit-db.com/download/3921/
titleClever Database Comparer ActiveX 2.2 - Remote Buffer Overflow PoC