CVE-2007-3169

EDraw Office Viewer Component < 5.0 - Buffer Overflow via HttpDownloadFile Method

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3169. PoCs published by shinnai.

AI-analyzed exploit summary This exploit triggers a Denial of Service (DoS) in the EDraw Office Viewer Component by passing an overly long string to the HttpDownloadFile method. The vulnerability is due to improper handling of input in the ActiveX control.

Description

Buffer overflow in a certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) or execute arbitrary code via a long first argument to the HttpDownloadFile method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmldoswindows

https://www.exploit-db.com/exploits/4009

View Code ZIP pw:eip

This exploit triggers a Denial of Service (DoS) in the EDraw Office Viewer Component by passing an overly long string to the HttpDownloadFile method. The vulnerability is due to improper handling of input in the ActiveX control.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: EDraw Office Viewer Component (edrawofficeviewer.ocx v. 4.0.5.20)

No auth needed

Prerequisites: Victim must visit a malicious webpage or open a malicious HTML file · ActiveX control must be installed and enabled

MITRE ATT&CK