CVE-2007-2566

Taltech Tal Bar Code ActiveX Control - Denial of Service via SaveBarCode Function

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2566. PoCs published by Umesh Wanve.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the Taltech Tal Bar Code ActiveX Control (CVE-2007-2566) by crafting a malicious HTML file that triggers the overflow via the SaveBarCode method, leading to arbitrary code execution (calc.exe).

Description

The SaveBarCode function in the Taltech Tal Bar Code ActiveX control allows remote attackers to cause a denial of service (disk consumption) by uploading multiple bar codes, as demonstrated by a WSF package.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Umesh Wanve · htmlremotewindows
https://www.exploit-db.com/exploits/3872

This exploit targets a buffer overflow vulnerability in the Taltech Tal Bar Code ActiveX Control (CVE-2007-2566) by crafting a malicious HTML file that triggers the overflow via the SaveBarCode method, leading to arbitrary code execution (calc.exe).

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Taltech Tal Bar Code ActiveX Control (TALBarCd.OCX)
No auth needed
Prerequisites: Victim must open the malicious HTML file in a vulnerable environment (e.g., Windows 2000 SP4 with the ActiveX control installed)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/467822/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2683
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34130
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25180

Scores

EPSS 0.0273
EPSS Percentile 84.2%

Details

Status published
Products (1)
taltech/tal_bar_code_activex_control
Published May 09, 2007
Tracked Since Feb 18, 2026