CVE-2007-0319

{"id": "CVE-2007-0319", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2007-08-15T19:17:00.000", "references": [{"url": "http://osvdb.org/37710", "source": "cret@cert.org"}, {"url": "http://secunia.com/advisories/26481", "source": "cret@cert.org"}, {"url": "http://securitytracker.com/id?1018571", "source": "cret@cert.org"}, {"url": "http://www.kb.cert.org/vuls/id/747233", "tags": ["US Government Resource"], "source": "cret@cert.org"}, {"url": "http://www.motive.com/securitybulletin_08122007.asp", "source": "cret@cert.org"}, {"url": "http://www.securityfocus.com/bid/25312", "source": "cret@cert.org"}, {"url": "http://www.vupen.com/english/advisories/2007/2881", "source": "cret@cert.org"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-045", "source": "cret@cert.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36034", "source": "cret@cert.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple stack-based buffer overflows in the Motive ActiveEmailTest.EmailData (ActiveUtils EmailData) ActiveX control in ActiveUtils.dll in Motive Service Activation Manager 5.1 and Self Service Manager 5.1 and earlier allow remote attackers to execute arbitrary code via unspecified vectors."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en el control ActiveX Motive ActiveEmailTest.EmailData (ActiveUtils EmailData) en ActiveUtils.dll de Motive Service Activation Manager 5.1 y Self Service Manager 5.1 y anteriores permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante vectores no especificados."}], "lastModified": "2018-10-12T21:42:41.937", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:motive_incorporated:self_service_manager:5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D22DF79-51EF-4216-93D1-50E43B84CF5D"}, {"criteria": "cpe:2.3:a:motive_incorporated:service_activation_manager:5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF582C84-4D87-4288-A911-0AD889AAB404"}], "operator": "OR"}]}], "sourceIdentifier": "cret@cert.org"}