CVE-2007-1688

Callisto PhotoParade Player - Buffer Overflow via FileVersionof Property

Title source: llm
STIX 2.1

Description

Buffer overflow in the PhPInfo ActiveX control in PhPCtrl.dll in Callisto PhotoParade Player allows remote attackers to execute arbitrary code via the FileVersionof property.

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25654
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3138
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26789
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/36588
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/171449
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37731

Scores

EPSS 0.0651
EPSS Percentile 93.0%

Details

CWE
CWE-119
Status published
Products (1)
callisto/photoparade_player
Published Sep 14, 2007
Tracked Since Feb 18, 2026