CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2323

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0520%
EPSS Percentile2.65th
PublishedApr 27, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple buffer overflows in the WinDVDX ActiveX control in InterVideo Home Theater 2.1.13.0 and 2.5.13.58 allow remote attackers to execute arbitrary code via a long string argument to the (1) GetDiscType or (2) AddFileList method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected Platforms (CPE)

πŸ“¦
Intervideo

Home Theater

= 2.1.13.0
πŸ“¦
Intervideo

Home Theater

= 2.5.13.58

References & Advisories

πŸ”— http://osvdb.org/34330
πŸ”— http://secunia.com/advisories/24710
πŸ”— http://www.securityfocus.com/bid/23637
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/33868
πŸ”— http://osvdb.org/34330
πŸ”— http://secunia.com/advisories/24710
πŸ”— http://www.securityfocus.com/bid/23637
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/33868

Related Vulnerabilities

CVE-2008-10625.0

InterVideo IMC Server (aka IMCSvr.exe) and InterVideo Home Theater (aka IHT.exe) in InterVideo WinDVD Media Center 2.11.15.0 allow...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.

CVE-2007-049610.0

PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to ex...

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...