Vulnerabilities > CVE-2007-3071 - Buffer Overflow vulnerability in Digital River Esellerate SDK 3.6.5.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Buffer overflow in the GetWebStoreURL function in a certain ActiveX control in eSellerateControl365.dll 3.6.5.0 in eSellerate SDK allows user-assisted remote attackers to execute arbitrary code via a long first argument.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Tango DropBox 3.1.5 + PRO - Activex Heap Spray. CVE-2007-3071. Webapps exploit for windows platform id EDB-ID:37319 last seen 2016-02-04 modified 2015-06-19 published 2015-06-19 reporter metacom source https://www.exploit-db.com/download/37319/ title Tango DropBox 3.1.5 + PRO - Activex Heap Spray description eSellerate SDK 3.6.5 eSellerateControl365.DLL ActiveX Control Buffer Overflow Vulnerability. CVE-2007-3071 . Remote exploit for windows platform id EDB-ID:30144 last seen 2016-02-03 modified 2007-06-04 published 2007-06-04 reporter shinnai source https://www.exploit-db.com/download/30144/ title eSellerate SDK 3.6.5 eSellerateControl365.DLL ActiveX Control Buffer Overflow Vulnerability