CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-5606

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1170%
EPSS Percentile4.37th
Published2008年6月4日
Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in the MoveFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary code via a long argument, a different vulnerability than CVE-2007-5604, CVE-2007-5605, and CVE-2007-5607.

Affected Platforms (CPE)

📦
Hp

Instant Support

<= 1.0.0.23

References & Advisories

🔗 http://secunia.com/advisories/30516
🔗 http://www.csis.dk/dk/forside/CSIS-RI-0003.pdf
🔗 http://www.kb.cert.org/vuls/id/221123
🔗 http://www.securityfocus.com/bid/29526
🔗 http://www.securityfocus.com/bid/29532
🔗 http://www.securitytracker.com/id?1020165
🔗 http://www.vupen.com/english/advisories/2008/1740/references
🔗 http://www12.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01422264

相關漏洞威脅

CVE-2008-095310.0

The StartApp function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0....

CVE-2007-561010.0

The DeleteSingleFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support befor...

CVE-2007-56089.3

The DownloadFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1....

CVE-2007-56059.3

Buffer overflow in the GetFileTime function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant...