CVE-2007-2955
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple unspecified "input validation error" vulnerabilities in multiple ActiveX controls in NavComUI.dll, as used in multiple Norton AntiVirus, Internet Security, and System Works products for 2006, allows remote attackers to execute arbitrary code via (1) the AnomalyList property to AxSysListView32 and (2) Anomaly property to AxSysListView32OAA.
Múltiples vulnerabilidades de "errores de validación de entrada" sin especificar en múltiples controles ActiveX en el NavComUI.dll, como el utilizado en el AntiVirus Norton, Internet Security y los productos System Works para 2006, permiten a atacantes remotos ejecutar código de su elección a través de (1) la propiedad AnomalyList del AxSysListView32 y (2) la propiedad Anomaly del AxSysListView32OAA.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-05-31 CVE Reserved
- 2007-08-09 CVE Published
- 2024-08-07 CVE Updated
- 2024-08-27 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/25215 | Third Party Advisory | |
| http://www.securityfocus.com/bid/24983 | Vdb Entry | |
| http://www.securitytracker.com/id?1018545 | Vdb Entry | |
| http://www.securitytracker.com/id?1018546 | Vdb Entry | |
| http://www.securitytracker.com/id?1018547 | Vdb Entry | |
| http://www.symantec.com/avcenter/security/Content/2007.08.09.html | X_refsource_confirm | |
| http://www.vupen.com/english/advisories/2007/2822 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/35944 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/secunia_research/2007-53/advisory | 2017-07-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Symantec Search vendor "Symantec" | Norton Antivirus Search vendor "Symantec" for product "Norton Antivirus" | 2006 Search vendor "Symantec" for product "Norton Antivirus" and version "2006" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Internet Security Search vendor "Symantec" for product "Norton Internet Security" | 2005 Search vendor "Symantec" for product "Norton Internet Security" and version "2005" | anti_spyware |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Internet Security Search vendor "Symantec" for product "Norton Internet Security" | 2006 Search vendor "Symantec" for product "Norton Internet Security" and version "2006" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton System Works Search vendor "Symantec" for product "Norton System Works" | 2006 Search vendor "Symantec" for product "Norton System Works" and version "2006" | - |
Affected
| ||||||