CVE-2007-2678

Netsprint Toolbar 1.1 - Buffer Overflow in isChecked Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2678. PoCs published by Umesh Wanve.

AI-analyzed exploit summary This is a proof-of-concept for a denial-of-service (DoS) vulnerability in NetSprint Toolbar ActiveX control (toolbar.dll). The exploit triggers a crash in Internet Explorer by passing a long string to the IsChecked function, causing a stack overflow.

Description

Buffer overflow in the isChecked function in toolbar.dll in Netsprint Toolbar 1.1 might allow remote attackers to execute arbitrary code via unspecified vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Umesh Wanve · htmldoswindows

https://www.exploit-db.com/exploits/3790

View Code ZIP pw:eip

This is a proof-of-concept for a denial-of-service (DoS) vulnerability in NetSprint Toolbar ActiveX control (toolbar.dll). The exploit triggers a crash in Internet Explorer by passing a long string to the IsChecked function, causing a stack overflow.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: NetSprint Toolbar ActiveX control (toolbar.dll)

No auth needed

Prerequisites: Internet Explorer with NetSprint Toolbar ActiveX control installed

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/465992/100/0/threaded

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/465980/100/0/threaded

Scores

EPSS 0.0363

EPSS Percentile 88.0%

Details

Status published

Products (1)

netsprint/netsprint_toolbar 1.1

Published May 15, 2007

Tracked Since Feb 18, 2026