4.3

CVE-2007-4336

EPSS 71.59%
Veröffentlicht 14.08.2007 18:17:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Buffer overflow in the Live Picture Corporation DXSurface.LivePicture.FlashPix.1 (DirectTransform FlashPix) ActiveX control in DXTLIPI.DLL 6.0.2.827, as packaged in Microsoft DirectX Media 6.0 SDK, allows remote attackers to execute arbitrary code via a long SourceUrl property value.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Directx Media Version6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	71.59%	0.986

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P

http://osvdb.org/36399

http://secunia.com/advisories/26426

Vendor Advisory

http://www.kb.cert.org/vuls/id/466601

US Government Resource

http://www.securityfocus.com/bid/25279

http://www.securitytracker.com/id?1018551

http://www.vupen.com/english/advisories/2007/2857

https://exchange.xforce.ibmcloud.com/vulnerabilities/35970

https://www.exploit-db.com/exploits/4279

https://nvd.nist.gov/vuln/detail/CVE-2007-4336

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-4336

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-4336

EUVD