CVE-2007-2658

ID Automation Linear Barcode 1.6.0.5 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2658. PoCs published by shinnai.

AI-analyzed exploit summary This exploit targets a denial-of-service (DoS) vulnerability in the ID Automation Linear Barcode ActiveX Control by passing an excessively long string to the SaveEnhWMF method, causing the application to crash.

Description

Unspecified vulnerability in the ID Automation Linear Barcode 1.6.0.5 ActiveX control in IDAutomationLinear6.dll allows remote attackers to cause a denial of service via a long argument to the SaveEnhWMF method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmldoswindows

https://www.exploit-db.com/exploits/3917

View Code ZIP pw:eip

This exploit targets a denial-of-service (DoS) vulnerability in the ID Automation Linear Barcode ActiveX Control by passing an excessively long string to the SaveEnhWMF method, causing the application to crash.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: ID Automation Linear Barcode ActiveX Control (IDAutomationLinear6.dll) v. 1.6.0.5

No auth needed

Prerequisites: Victim must visit a malicious webpage or open a malicious HTML file in Internet Explorer with the vulnerable ActiveX control installed

MITRE ATT&CK