CVE-2007-3675
Currently unrated
Summary
Multiple format string vulnerabilities in the kavwebscan.CKAVWebScan ActiveX control (kavwebscan.dll) in Kaspersky Online Scanner before 5.0.98 allow remote attackers to execute arbitrary code via format string specifiers in "various string formatting functions," which trigger heap-based buffer overflows.
References
EPSS Score
12% chance of being exploited in the next 30 days.
Timeline
Vulnerability published
Vulnerability Reserved