4.3

CVE-2007-4336

EPSS 71.59%
Published 14.08.2007 18:17:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in the Live Picture Corporation DXSurface.LivePicture.FlashPix.1 (DirectTransform FlashPix) ActiveX control in DXTLIPI.DLL 6.0.2.827, as packaged in Microsoft DirectX Media 6.0 SDK, allows remote attackers to execute arbitrary code via a long SourceUrl property value.

Affected products Warnungen 0 Metrics 2 CWE 0 References 11

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Directx Media Version6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	71.59%	0.986

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P

http://osvdb.org/36399

http://secunia.com/advisories/26426

Vendor Advisory

http://www.kb.cert.org/vuls/id/466601

US Government Resource

http://www.securityfocus.com/bid/25279

http://www.securitytracker.com/id?1018551

http://www.vupen.com/english/advisories/2007/2857

https://exchange.xforce.ibmcloud.com/vulnerabilities/35970

https://www.exploit-db.com/exploits/4279

https://nvd.nist.gov/vuln/detail/CVE-2007-4336

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-4336

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-4336

EUVD