CVE-2007-3071 – eSellerate SDK 3.6.5 - 'eSellerateControl365.dll' ActiveX Control Buffer Overflow

https://notcve.org/view.php?id=CVE-2007-3071

Buffer overflow in the GetWebStoreURL function in a certain ActiveX control in eSellerateControl365.dll 3.6.5.0 in eSellerate SDK allows user-assisted remote attackers to execute arbitrary code via a long first argument. Desbordamiento de búfer en la función GetWebStoreURL en un control ActiveX determinado en eSellerateControl365.dll 3.6.5.0 de eSellerate SDK permite a atacantes remotos con la complicidad del usuario ejecutar código de su elección mediante un primer argumento largo. • https://www.exploit-db.com/exploits/30144 https://www.exploit-db.com/exploits/37319 http://osvdb.org/38803 http://www.securityfocus.com/bid/24300 http://www.shinnai.altervista.org/exploits/esellerate.html https://exchange.xforce.ibmcloud.com/vulnerabilities/35003 •