CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2929

MEDIUM
5.8
CVSS Severity Score
EPSS Score0.1680%
EPSS Percentile21.19th
PublishedAug 15, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll before 1.2.8.0 and possibly acpir.dll before 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), exposes unsafe methods to arbitrary web domains, which allows remote attackers to download arbitrary code onto a client system and execute this code.

Affected Platforms (CPE)

πŸ”Œ
Lenovo

Access Support

All versions
πŸ”Œ
Lenovo

Automated Solutions

= 1.0

References & Advisories

πŸ”— http://secunia.com/advisories/26482
πŸ”— http://www-307.ibm.com/pc/support/site.wss/document.do?sitestyle=lenovo&lndocid=MIGR-67649
πŸ”— http://www.kb.cert.org/vuls/id/426737
πŸ”— http://www.securityfocus.com/bid/25311
πŸ”— http://www.vupen.com/english/advisories/2007/2882
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-045
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/36035
πŸ”— http://secunia.com/advisories/26482

Related Vulnerabilities

CVE-2017-1040210.0

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications (subcomponent: Report...

CVE-2017-1040510.0

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications (subcomponent: Report...

CVE-2017-1013710.0

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: JNDI). Supported versions that ar...

CVE-2017-1015110.0

Vulnerability in the Oracle Identity Manager component of Oracle Fusion Middleware (subcomponent: Default Account). Supported vers...