CVE-2007-4916

Heap-based buffer overflow in the FileFind::FindFile method in (1) MFC42.dll, (2) MFC42u.dll, (3) MFC71.dll, and (4) MFC71u.dll in Microsoft Foundation Class (MFC) Library 8.0, as used by the ListFiles method in hpqutil.dll 2.0.0.138 in Hewlett-Packard (HP) All-in-One and Photo & Imaging Gallery 1.1 and probably other products, allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long first argument.
Configurations

Configuration 1 (hide)

cpe:2.3:a:hp:photo_and_imaging_gallery:1.1:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:h:hp:all-in-on_printer:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-09-17 17:17

Updated : 2024-02-28 11:01


NVD link : CVE-2007-4916

Mitre link : CVE-2007-4916

CVE.ORG link : CVE-2007-4916


JSON object : View

Products Affected

hp

  • all-in-on_printer
  • photo_and_imaging_gallery
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer