Back to search
CVE-2007-2856
Published: May 24, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in the Dart Communications PowerTCP ZIP Compression ActiveX control in DartZip.dll 1.8.5.3, when Internet Explorer 6 is used, allows user-assisted remote attackers to execute arbitrary code via a long first argument to the QuickZip function, a related issue to CVE-2007-2855.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20070525 IE 6 / Dart Communications PowerTCP ZIP Compression Control (DartZip.dll 1.8.5.3) remote buffer overflow
mailing-list
x_refsource_BUGTRAQ
38111
vdb-entry
x_refsource_OSVDB
24163
vdb-entry
x_refsource_BID
powertcp-service-activex-bo(34494)
vdb-entry
x_refsource_XF
20070524 Dart Communications PowerTCP Service Control (DartService.dll 3.1.3.3) remote buffer overflow
mailing-list
x_refsource_BUGTRAQ
powertcp-compression-bo(34520)
vdb-entry
x_refsource_XF
24142
vdb-entry
x_refsource_BID
http://retrogod.altervista.org/ie_DartZip_bof.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now