CVE-2007-6028

ComponentOne FlexGrid 7.1 Light - Buffer Overflow

Title source: llm

Description

Multiple stack-based buffer overflows in the VSFlexGrid.VSFlexGridL ActiveX control in ComponentOne FlexGrid 7.1 Light allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long string in the (1) Text, (2) EditSelText, (3) EditText, and (4) CellFontName property values.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Elazar Broad · htmlremotewindows

https://www.exploit-db.com/exploits/30772

View Code ZIP pw:eip

References (3)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/38507

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/26467

[Mailing List] http://marc.info/?l=full-disclosure&m=119517573408574&w=2

Scores

EPSS 0.0557

EPSS Percentile 90.3%

Details

CWE

CWE-119

Status published

Products (1)

componentone/flexgrid 7.1_light

Published Nov 20, 2007

Tracked Since Feb 18, 2026