CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-1722

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1550%
EPSS Percentile40.27th
Published2007年3月28日
Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in the DownloadCertificateExt function in SignKorea SKCommAX ActiveX control module 7.2.0.2 and 3280 6.6.0.1 allows remote attackers to execute arbitrary code via a long pszUserID argument.

Affected Platforms (CPE)

📦
Signkorea

Skcommax Activex Control

= 6.6.0.1_3280
📦
Signkorea

Skcommax Activex Control

= 7.2.0.2

References & Advisories

🔗 http://marc.info/?l=full-disclosure&m=117497124018827&w=2
🔗 http://secunia.com/advisories/24587
🔗 http://www.securityfocus.com/bid/23149
🔗 http://www.vupen.com/english/advisories/2007/1114
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/33245
🔗 http://marc.info/?l=full-disclosure&m=117497124018827&w=2
🔗 http://secunia.com/advisories/24587
🔗 http://www.securityfocus.com/bid/23149

相關漏洞威脅

CVE-2007-232110.0

Unspecified vulnerability in the search functionality in SilverStripe 2.0.0 has unknown impact and attack vectors.

CVE-2007-232310.0

Multiple buffer overflows in the WinDVDX ActiveX control in InterVideo Home Theater 2.1.13.0 and 2.5.13.58 allow remote attackers ...

CVE-2007-231610.0

Unspecified vulnerability in the admin script in Open Business Management (OBM) before 2.0.0 allows remote attackers to have an un...

CVE-2007-232510.0

PHP remote file inclusion vulnerability in include.php in MyNewsGroups :) allows remote attackers to execute arbitrary PHP code vi...