CVE-2007-0348

N/A Unknown

Published: March 21, 2007 Modified: April 23, 2026

Description

Stack-based buffer overflow in the IASystemInfo.dll ActiveX control in (1) InterActual Player 2.60.12.0717, (2) Roxio CinePlayer 3.2, (3) WinDVD 7.0.27.172, and possibly other products, allows remote attackers to execute arbitrary code via a long ApplicationType property.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/34314

Source: PSIRT-CNA@flexerasoftware.com

http://osvdb.org/34315

Source: PSIRT-CNA@flexerasoftware.com

http://secunia.com/advisories/23032

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/advisories/23075

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/advisories/24556

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/secunia_research/2007-37/advisory/

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://www.kb.cert.org/vuls/id/922969

Source: PSIRT-CNA@flexerasoftware.com

US Government Resource

http://www.securityfocus.com/archive/1/463405/100/0/threaded

Source: PSIRT-CNA@flexerasoftware.com

http://www.securityfocus.com/bid/23071

Source: PSIRT-CNA@flexerasoftware.com

http://www.vupen.com/english/advisories/2007/1042

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://www.vupen.com/english/advisories/2007/1043

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/33186

Source: PSIRT-CNA@flexerasoftware.com

http://osvdb.org/34314

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/34315

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/23032

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/23075

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/24556

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/secunia_research/2007-37/advisory/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.kb.cert.org/vuls/id/922969

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.securityfocus.com/archive/1/463405/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/23071

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/1042

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2007/1043

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/33186

Source: af854a3a-2127-422b-91ae-364da2661108

24 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

72.7%

99th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-119

Affected Vendors

roxio intervideo interactual_technologies

Related CVEs

CVE-2026-8696 7.5

CVE-2026-45672 8.8

CVE-2026-45402 8.1

CVE-2026-45401 8.5

CVE-2026-45400 8.5