CVE-2007-2851

LeadTools Raster Variant Object Library <14.5.0.44 - Code Injection

Title source: llm

Description

A certain ActiveX control in LeadTools Raster Variant Object Library (LTRVR14e.dll) 14.5.0.44 allows remote attackers to overwrite arbitrary files via the WriteDataToFile method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmlremotewindows

https://www.exploit-db.com/exploits/3961

View Code ZIP pw:eip

References (5)

[Various Sources] http://moaxb.blogspot.com/2007/05/moaxb-21-leadtools-raster-variant.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/34386

[Third Party Advisory, VDB Entry] http://osvdb.org/36033

[Exploit] http://www.securityfocus.com/bid/24075

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3961

Scores

EPSS 0.0654

EPSS Percentile 91.2%

Details

Status published

Products (1)

lead_technologies/leadtools_raster_variant_object_library 14.5.0.44

Published May 24, 2007

Tracked Since Feb 18, 2026