CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-4903

Multiple buffer overflows in a certain ActiveX control in CryptoX.dll 2.0 and earlier in the Ultra Crypto Component allow remote attackers to execute arbitrary code via (1) a long string in the first argument to the AcquireContext method or (2) an unspecified vector to the DeleteContext method.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.069

EPSS Ranking 90.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/38979
http://www.securityfocus.com/bid/25609
http://www.securitytracker.com/id?1018674
https://exchange.xforce.ibmcloud.com/vulnerabilities/36524
https://www.exploit-db.com/exploits/4389
http://osvdb.org/38979
http://www.securityfocus.com/bid/25609
http://www.securitytracker.com/id?1018674
https://exchange.xforce.ibmcloud.com/vulnerabilities/36524
https://www.exploit-db.com/exploits/4389

Products affected by CVE-2007-4903

Ultra Shareware » Ultra Crypto Component » Version: 2.0.2007.801

cpe:2.3:a:ultra_shareware:ultra_crypto_component:2.0.2007.801

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-4903

Products

Pricing

Contact Us