VDB
CVE-2007-1891
CVE-2007-1891
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Stack-based buffer overflow in the GetPrivateProfileSectionW function in Akamai Technologies Download Manager ActiveX Control (DownloadManagerV2.ocx) after 2.0.4.4 but before 2.2.1.0 allows remote attackers to execute arbitrary code, related to misinterpretation of the nSize parameter as a byte count instead of a wide character count.
EPSS 19.69% · 95.6th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
19.69%
95.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| akamai_technologies | download_manager | 2.2.0.0 |
| n/a | n/a | n/a |
Timeline
- Apr 18, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Sep 19, 2023 EPSS Score
References
- 20070416 Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability third-party-advisory
- 34323 vdb
- 20070416 Akamai Technologies Security Advisory 2007-0001 mailing-list
- 24900 third-party-advisory
- 1017925 vdb
- VU#120241 third-party-advisory
- ADV-2007-1415 vdb
- 23522 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2007-1891 advisory