Vulnerabilities > CVE-2007-2814 - Unspecified vulnerability in Pegasus Imagn Activex Control 4.00.041
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN pegasus
exploit available
Summary
Multiple stack-based buffer overflows in the Pegasus ImagN' ActiveX control (IMW32O40.OCX) 4.00.041 allow remote attackers to execute arbitrary code via (1) a long FileName parameter, or unspecified vectors involving the (2) BeginReport, (3) CreatePictureExA, (4) DefineImage, (5) DefineImageEx, (6) DefineImageFox, (7) CopyBufToClipExA, (8) LoadEx, (9) LoadFox, and other functions.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Pegasus ImagN ActiveX Control Remote Buffer Overflow Exploit. CVE-2007-2814. Remote exploit for windows platform |
| id | EDB-ID:3966 |
| last seen | 2016-01-31 |
| modified | 2007-05-21 |
| published | 2007-05-21 |
| reporter | rgod |
| source | https://www.exploit-db.com/download/3966/ |
| title | Pegasus ImagN ActiveX Control Remote Buffer Overflow Exploit |
References
- http://osvdb.org/36518
- http://osvdb.org/36518
- http://retrogod.altervista.org/IE_pegasus_imagn_bof.html
- http://retrogod.altervista.org/IE_pegasus_imagn_bof.html
- http://secunia.com/advisories/25351
- http://secunia.com/advisories/25351
- http://www.securityfocus.com/bid/24086
- http://www.securityfocus.com/bid/24086
- http://www.vupen.com/english/advisories/2007/1899
- http://www.vupen.com/english/advisories/2007/1899
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34419
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34419