CVE-2007-2667

VImpX ActiveX <4.7.3 - RCE

Title source: llm

Description

Buffer overflow in the DB Software Laboratory VImpX ActiveX control in VImpX.ocx 4.7.3 allows remote attackers to execute arbitrary code via a long LogFile parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpremotewindows

https://www.exploit-db.com/exploits/3916

View Code ZIP pw:eip

References (5)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/34260

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/23953

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3916

[Third Party Advisory, VDB Entry] http://osvdb.org/36156

[Third Party Advisory] http://secunia.com/advisories/25330

Scores

EPSS 0.2034

EPSS Percentile 95.5%

Details

Status published

Products (1)

db_soft_lab/vimp_x 4.7.3

Published May 14, 2007

Tracked Since Feb 18, 2026