Vulnerabilities > CVE-2007-2919 - Buffer Overflow vulnerability in E-Book Systems FlipViewer FlipViewerX.DLL ActiveX
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple stack-based buffer overflows in the FViewerLoading ActiveX control (FlipViewerX.dll) in E-Book Systems FlipViewer before 4.1 allow remote attackers to cause a denial of service (crash) or execute arbitrary code via long (1) UID, (2) Opf, (3) PAGENO, (4) LaunchMode, (5) SubID, (6) BookID, (7) LibraryID, (8) SubURL, and (9) LoadOpf properties.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | FlipViewer FViewerLoading ActiveX Control Buffer Overflow. CVE-2007-2919. Remote exploit for windows platform |
| id | EDB-ID:16601 |
| last seen | 2016-02-02 |
| modified | 2010-06-15 |
| published | 2010-06-15 |
| reporter | metasploit |
| source | https://www.exploit-db.com/download/16601/ |
| title | FlipViewer FViewerLoading ActiveX Control Buffer Overflow |
Metasploit
| description | This module exploits a stack buffer overflow in E-BOOK Systems FlipViewer 4.0. The vulnerability is caused due to a boundary error in the FViewerLoading (FlipViewerX.dll) ActiveX control when handling the "LoadOpf()" method. |
| id | MSF:EXPLOIT/WINDOWS/BROWSER/EBOOK_FLIPVIEWER_FVIEWERLOADING |
| last seen | 2020-06-14 |
| modified | 2017-11-08 |
| published | 2009-03-02 |
| references | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2919 |
| reporter | Rapid7 |
| source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/browser/ebook_flipviewer_fviewerloading.rb |
| title | FlipViewer FViewerLoading ActiveX Control Buffer Overflow |
Nessus
| NASL family | Windows |
| NASL id | FLIPVIEWER_ACTIVEX_41_OVERFLOWS.NASL |
| description | The Windows remote host contains the FlipViewer ActiveX control, which is used for viewing electronic documents. The version of this ActiveX control on the remote host reportedly contains multiple stack-based buffer overflow vulnerabilities. A remote attacker may be able to leverage these issues to execute arbitrary code on the remote host subject to the privileges of the current user. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 25442 |
| published | 2007-06-07 |
| reporter | This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/25442 |
| title | FlipViewer ActiveX Control < 4.1 Buffer Overflow Vulnerabilities |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/83113/ebook_flipviewer_fviewerloading.rb.txt |
| id | PACKETSTORM:83113 |
| last seen | 2016-12-05 |
| published | 2009-11-26 |
| reporter | LSO |
| source | https://packetstormsecurity.com/files/83113/FlipViewer-FViewerLoading-ActiveX-Control-Buffer-Overflow.html |
| title | FlipViewer FViewerLoading ActiveX Control Buffer Overflow |