CVE-2007-1682

Published Aug 27, 2008

Last updated 16 years ago

CVSS info 9.3

Overview

Description: Multiple stack-based buffer overflows in the FileManager ActiveX control in SAFmgPws.dll in SoftArtisans XFile before 2.4.0 allow remote attackers to execute arbitrary code via unspecified calls to the (1) BuildPath, (2) GetDriveName, (3) DriveExists, or (4) DeleteFile method.
Source: cret@cert.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDFD01A6-2CB3-4EF1-A81F-CF472294081C",
            "versionEndIncluding": "2.3.4"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A349F44E-3A51-4702-BBB3-7D5B622C68C5"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57F37B78-F308-4F2C-BEA4-96E91AA05906"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0FAEA84-407B-4900-9642-60127D617C76"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84A4500E-7D34-4436-8B27-B127C1D08CF1"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F04D099-BFA4-4330-8AF3-EC395E436709"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B58368F-25B3-4FE4-A5C6-00F6C6888F6A"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FAE74F9B-2F6E-4445-9A34-A04E622F269E"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC26101E-077A-42AD-B82F-C5E19AC7FB97"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "710AB2A2-293A-44D8-92EC-26143599BB31"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA5E00B5-1D19-4C95-9660-5E3B18E871B8"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E00A5FCF-31B6-4788-B836-34FEA4A5E1E7"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53C356DC-5C96-4F8D-83AD-3142E87F88B9"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:1.1.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E203841-ACD0-4B16-93BC-F650CB6F7853"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92F3C27D-9BF4-4A36-8B0C-B813C367B22B"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8557F8A0-265D-4FEA-9982-9E19EE36CF47"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28350273-2166-474C-AD1F-5591AD644F8E"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6EC8D73-E71A-4988-A687-10C9AB6EFC83"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3134EF9B-D4D6-4F9A-8E63-3AE20105BF54"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCB5E60A-8DEB-408A-B0BB-404BF2D6AB16"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D143F22-E10F-4548-80CE-79547366A670"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.1.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F61EA55C-4DC4-4D7E-8B95-B331DC510A2C"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F31FDCD-EC0D-4F49-8032-C062A9FB7E3E"
          },
          {
            "criteria": "cpe:2.3:a:softartisans:xfile:2.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D7D43259-8042-45A4-AF36-B1576FACBAFD"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References