CyberSec.Space Logo
Back to CVE Browser

CVE-2007-1955

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0910%
EPSS Percentile28.65th
PublishedApr 11, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple stack-based buffer overflows in the SignKorea SKCrypAX ActiveX control module 5.4.1.2 allow remote attackers to execute arbitrary code via a long string in unspecified arguments to the (1) DownloadCert, (2) DecryptFileByKey, and (3) EncryptFileByKey functions, a different module and vectors than CVE-2007-1722. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected Platforms (CPE)

πŸ“¦
Signkorea

Skcommax Activex Control

= 5.4.1.2

References & Advisories

πŸ”— http://osvdb.org/34322
πŸ”— http://secunia.com/advisories/24820
πŸ”— http://www.securityfocus.com/bid/23374
πŸ”— http://osvdb.org/34322
πŸ”— http://secunia.com/advisories/24820
πŸ”— http://www.securityfocus.com/bid/23374

Related Vulnerabilities

CVE-2007-172210.0

Buffer overflow in the DownloadCertificateExt function in SignKorea SKCommAX ActiveX control module 7.2.0.2 and 3280 6.6.0.1 allow...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.

CVE-2007-049610.0

PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to ex...

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...