← back
CVE-2007-2938

CVE-2007-2938

EPSS 40.5%
Buffer overflow in the BaseRunner ActiveX control in the Ademco ATNBaseLoader100 Module (ATNBaseLoader100.dll) 5.4.0.6, when Internet Explorer 6 is used, allows remote attackers to execute arbitrary code via a long argument to the (1) Send485CMD method, and possibly the (2) SetLoginID, (3) AddSite, (4) SetScreen, and (5) SetVideoServer methods.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/3993unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/36700http://secunia.com/advisories/25430https://exchange.xforce.ibmcloud.com/vulnerabilities/34548https://www.exploit-db.com/exploits/3993http://www.securityfocus.com/bid/24172http://www.vupen.com/english/advisories/2007/1958