Vulnerability Details CVE-2007-2648
Stack-based buffer overflow in the Clever Database Comparer 2.2 ActiveX control (comparerax.ocx) allows remote attackers to execute arbitrary code via a long argument to the ConnectToDatabase function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.063
EPSS Ranking 90.6%
CVSS Severity
CVSS v2 Score 9.3
References
- http://moaxb.blogspot.com/2007/05/moaxb-14-clever-database-comparer.html
- http://osvdb.org/36019
- http://secunia.com/advisories/25227
- http://www.securityfocus.com/bid/23969
- http://www.shinnai.altervista.org/moaxb/20070514/clever.html
- http://www.vupen.com/english/advisories/2007/1792
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34261
- http://moaxb.blogspot.com/2007/05/moaxb-14-clever-database-comparer.html
- http://osvdb.org/36019
- http://secunia.com/advisories/25227
- http://www.securityfocus.com/bid/23969
- http://www.shinnai.altervista.org/moaxb/20070514/clever.html
- http://www.vupen.com/english/advisories/2007/1792
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34261
Products affected by CVE-2007-2648
-
cpe:2.3:a:clever_components:clever_database_comparer:2.2