Format String Vulnerability in IBM Lenovo Access Support ActiveX Control
CVE-2007-2928

Currently unrated

Key Information:

Vendor

Lenovo
Status
Automated Solutions
Access Support
Vendor
CVE Published:
15 August 2007

What is CVE-2007-2928?

The IBM Lenovo Access Support ActiveX control is vulnerable to a format string issue that allows remote attackers to execute arbitrary code. This vulnerability arises due to improper handling of format string specifiers in certain data inputs, potentially affecting various system configurations. Users are advised to apply relevant patches to mitigate any risks associated with this vulnerability. The affected versions include acpcontroller.dll prior to 1.2.8.0 and acpir.dll before 1.0.0.9, among others.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.vupen.com/english/advisories/2007/2882
vdb-entryx_refsource_VUPEN
http://www-307.ibm.com/pc/support/site.wss/document.do?si...
x_refsource_CONFIRM
https://docs.microsoft.com/en-us/security-updates/securit...
vendor-advisoryx_refsource_MS

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.