Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-1819

Published: 02/04/2007 Updated: 29/07/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 940
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Mercury Quality Center

Vulnerability Summary

Stack-based buffer overflow in the SPIDERLib.Loader ActiveX control (Spider90.ocx) 9.1.0.4353 in TestDirector (TD) for Mercury Quality Center 9.0 before Patch 12.1, and 8.2 SP1 before Patch 32, allows remote malicious users to execute arbitrary code via a long ProgColor property.

Vulnerable Product Search on Vulmon Subscribe to Product

hp mercury quality center 9.0

hp mercury quality center 8.2

Exploits

Exploit DB: HP Mercury Quality Center - Spider90.ocx ProgColor Overflow
#!/usr/bin/perl # POC exploit for Mercury Quality Center Spider90ocx ProgColor Overflow # credit to Skylined, Trirat Puttaraksa, HDM Skape and the rest of the # metasploit crew This exploit is just a cut and paste of thier code they # deserve the credit # Vulnerability found by Titon and Ri0t of Bastardlabs use strict; # win32_bind LPORT = 5 ...
Exploit DB: HP Mercury Quality Center - ActiveX Control ProgColor Buffer Overflow (Metasploit)
## # $Id: hpmqc_progcolorrb 9179 2010-04-30 08:40:19Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class ...

References

CWE-119http://webnotes.merc-int.com/patches.nsf/c4d68388a23535dc422567d0004bbae2/cf109e434c7765eac22572a4006c6e94?OpenDocumenthttp://webnotes.merc-int.com/patches.nsf/c4d68388a23535dc422567d0004bbae2/7a0f7f0efc7905fdc225729f004cf387?OpenDocumenthttp://www.kb.cert.org/vuls/id/589097http://securitytracker.com/id?1017835http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=497http://www.securityfocus.com/bid/23239http://secunia.com/advisories/24692http://www.vupen.com/english/advisories/2007/1185http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00901872https://exchange.xforce.ibmcloud.com/vulnerabilities/33353https://nvd.nist.govhttps://www.exploit-db.com/exploits/3661/https://www.kb.cert.org/vuls/id/589097
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook