CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-2928

MEDIUM
5.8
CVSS Severity Score
EPSS Score0.1690%
EPSS Percentile30.14th
Published2007年8月15日
Last Modified2026年4月23日

Vulnerability Description

Format string vulnerability in the IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll before 1.2.8.0 and possibly acpir.dll before 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), allows remote attackers to execute arbitrary code via format string specifiers in unknown data.

Affected Platforms (CPE)

🔌
Lenovo

Access Support

All versions
🔌
Lenovo

Automated Solutions

= 1.0

References & Advisories

🔗 http://secunia.com/advisories/26482
🔗 http://www-307.ibm.com/pc/support/site.wss/document.do?sitestyle=lenovo&lndocid=MIGR-67649
🔗 http://www.kb.cert.org/vuls/id/599657
🔗 http://www.securityfocus.com/bid/25311
🔗 http://www.vupen.com/english/advisories/2007/2882
🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-045
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/36033
🔗 http://secunia.com/advisories/26482

関連する脆弱性情報

CVE-2017-1040210.0

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications (subcomponent: Report...

CVE-2017-1040510.0

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications (subcomponent: Report...

CVE-2017-1013710.0

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: JNDI). Supported versions that ar...

CVE-2017-1015110.0

Vulnerability in the Oracle Identity Manager component of Oracle Fusion Middleware (subcomponent: Default Account). Supported vers...