CVE-2007-3554

Currently unrated

Key Information:

Vendor: HP
Status: Instant Support
Vendor: CVE Published:; 4 July 2007

Summary

Stack-based buffer overflow in the HPSDDX Class (SDD) ActiveX control in sdd.dll in HP Instant Support - Driver Check before 1.5.0.3 allows remote attackers to execute arbitrary code via a long argument to the queryHub function.

References

http://www.vupen.com/english/advisories/2007/2413

vdb-entryx_refsource_VUPEN

http://www.shinnai.altervista.org/index.php?mod=02_Forum&...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/35228

vdb-entryx_refsource_XF

EPSS Score

37% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 4, 2007
Vulnerability Reserved
Jul 4, 2007