CVE-2007-1819

Currently unrated

Key Information:

Vendor: HP
Status: Mercury Quality Center
Vendor: CVE Published:; 2 April 2007

Summary

Stack-based buffer overflow in the SPIDERLib.Loader ActiveX control (Spider90.ocx) 9.1.0.4353 in TestDirector (TD) for Mercury Quality Center 9.0 before Patch 12.1, and 8.2 SP1 before Patch 32, allows remote attackers to execute arbitrary code via a long ProgColor property.

References

http://h20000.www2.hp.com/bizsupport/TechSupport/Document...

vendor-advisoryx_refsource_HP

http://www.vupen.com/english/advisories/2007/1185

vdb-entryx_refsource_VUPEN

http://securitytracker.com/id?1017835

vdb-entryx_refsource_SECTRACK

EPSS Score

85% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 2, 2007
Vulnerability Reserved
Apr 2, 2007