CyberSec.Space Logo
Back to CVE Browser

CVE-2006-3893

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0400%
EPSS Percentile0.35th
PublishedDec 4, 2006
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple buffer overflows in the ActiveX controls in Newtone ImageKit 5 before Fix 30 and 6 before Fix 40, as used in CASIO Photo Loader software before 3.01 and possibly other software, allow remote attackers to execute arbitrary code via a crafted HTML document.

Affected Platforms (CPE)

πŸ“¦
Casio

Photo Loader

= 3.00
πŸ“¦
Newtone

Imagekit

= 5_fix_29
πŸ“¦
Newtone

Imagekit

= 6_fix_40

References & Advisories

πŸ”— http://secunia.com/advisories/23286
πŸ”— http://www.kb.cert.org/vuls/id/210697
πŸ”— http://www.securityfocus.com/bid/21375
πŸ”— http://www.vupen.com/english/advisories/2006/4794
πŸ”— http://www.vupen.com/english/advisories/2006/4795
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/30680
πŸ”— http://secunia.com/advisories/23286
πŸ”— http://www.kb.cert.org/vuls/id/210697

Related Vulnerabilities

CVE-2006-012810.0

Buffer overflow in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote attackers to have an unknown impact via un...

CVE-2006-011910.0

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due...

CVE-2006-610210.0

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X ser...

CVE-2006-021810.0

Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to...