// For flags

CVE-2007-2763

LeadTools MultiMedia 15 - 'Ltmm15.dll' ActiveX Control Stack Buffer Overflow

Severity Score

10.0
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Buffer overflow in the UnlockSupport function in the LockModules subsystem in a certain ActiveX control in ltmm15.dll in Sienzo Digital Music Mentor (DMM) 2.6.0.4 allows remote attackers to execute arbitrary code via a long string in the second argument, a different issue than CVE-2007-2564.

Desbordamiento de búfer en la función UnlockSupport en el subsistema LockModules de ciertos controles ActiveX en el ltmm15.dll del Sienzo Digital Music Mentor (DMM) 2.6.0.4 permite a atacantes remotos ejecutar código de su elección a través de cadenas largas en segundo argumento. Vulnerabilidad diferente a la CVE-2007-2564.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-05-17 First Exploit
  • 2007-05-18 CVE Reserved
  • 2007-05-18 CVE Published
  • 2024-02-12 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Sienzo
Search vendor "Sienzo"
 Digital Music Mentor
Search vendor "Sienzo" for product "Digital Music Mentor"
 2.6.0.4
Search vendor "Sienzo" for product "Digital Music Mentor" and version "2.6.0.4"
-
Affected