Vulnerability CVE-2007-3536


Published: 2007-07-03   Modified: 2012-02-12

Description:
Multiple buffer overflows in the AMX NetLinx VNC (AmxVnc) ActiveX control in AmxVnc.dll 1.0.13.0 allow remote attackers to execute arbitrary code via long (1) Host, (2) Password, or (3) LogFile property values.

CVSS2 => (AV:N/AC:H/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.6/10
10/10
4.9/10
Exploit range
Attack complexity
Authentication
Remote
High
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
AMX -> Netlinx vnc activex control 

 References:
http://www.securityfocus.com/bid/24703
http://www.vupen.com/english/advisories/2007/2387
https://exchange.xforce.ibmcloud.com/vulnerabilities/35155
https://www.exploit-db.com/exploits/4123

Copyright 2024, cxsecurity.com

 

Back to Top