CVE-2007-0111

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2007-0111
Buffer overflow in Resco Photo Viewer for PocketPC 4.11 and 6.01, as used in mobile devices running Windows Mobile 5.0, 2003, and 2003SE, allows remote attackers to execute arbitrary code via a crafted PNG image.

6.8 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://blog.trendmicro.com/flaw-in-3rd-party-app-weakens-windows-mobile/ Vendor Advisory
http://osvdb.org/32644
http://secunia.com/advisories/23658 Vendor Advisory
http://www.securityfocus.com/bid/21920 Vendor Advisory
http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=Vulnerability+in+Resco+Photo+Viewer+6.01+Enabling+Code+Injection+and+Arbitrary+Code+Execution
http://www.vupen.com/english/advisories/2007/0072
http://blog.trendmicro.com/flaw-in-3rd-party-app-weakens-windows-mobile/ Vendor Advisory
http://osvdb.org/32644
http://secunia.com/advisories/23658 Vendor Advisory
http://www.securityfocus.com/bid/21920 Vendor Advisory
http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=Vulnerability+in+Resco+Photo+Viewer+6.01+Enabling+Code+Injection+and+Arbitrary+Code+Execution
http://www.vupen.com/english/advisories/2007/0072
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:resco:photo_viewer:4.11:*:*:*:*:*:*:*
cpe:2.3:a:resco:photo_viewer:6.11:*:*:*:*:*:*:*
History

21 Nov 2024, 00:24

Type Values Removed Values Added
References () http://blog.trendmicro.com/flaw-in-3rd-party-app-weakens-windows-mobile/ - Vendor Advisory () http://blog.trendmicro.com/flaw-in-3rd-party-app-weakens-windows-mobile/ - Vendor Advisory
References () http://osvdb.org/32644 - () http://osvdb.org/32644 -
References () http://secunia.com/advisories/23658 - Vendor Advisory () http://secunia.com/advisories/23658 - Vendor Advisory
References () http://www.securityfocus.com/bid/21920 - Vendor Advisory () http://www.securityfocus.com/bid/21920 - Vendor Advisory
References () http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=Vulnerability+in+Resco+Photo+Viewer+6.01+Enabling+Code+Injection+and+Arbitrary+Code+Execution - () http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=Vulnerability+in+Resco+Photo+Viewer+6.01+Enabling+Code+Injection+and+Arbitrary+Code+Execution -
References () http://www.vupen.com/english/advisories/2007/0072 - () http://www.vupen.com/english/advisories/2007/0072 -
Information

Published : 2007-01-09 00:28

Updated : 2024-11-21 00:24

NVD link : CVE-2007-0111

Mitre link : CVE-2007-0111

CVE.ORG link : CVE-2007-0111

JSON object : View

Products Affected

resco

  • photo_viewer
CWE
NVD-CWE-Other