CVE-2007-0326

PNI Digital Media Photo Upload Plugin ActiveX Control < 2.0.0.9 - Stack-Based Buffer Overflow

Title source: llm
STIX 2.1

Description

Multiple stack-based buffer overflows in the PhotoChannel Networks PNI Digital Media Photo Upload Plugin ActiveX control before 2.0.0.10, as used by multiple retailers, allow remote attackers to execute arbitrary code via unspecified vectors.

References (7)

Core 7
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3181
Patch, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/854769
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/36643
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25685
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018701
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37958
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26830

Scores

EPSS 0.0672
EPSS Percentile 93.2%

Details

CWE
CWE-119
Status published
Products (1)
photochannel/pni_digital_media_upload_plugin_activex_control < 2.0.0.9
Published Sep 18, 2007
Tracked Since Feb 18, 2026