CVE-2007-2853

The VCDAPILibApi ActiveX control in vc9api.DLL 9.0.0.57 in Virtual CD 9.0.0.2 allows remote attackers to execute arbitrary commands via a command line in the first argument to the VCDLaunchAndWait function.

Published: May 24, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-2853
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
h+h / virtual_cd	9.0.0.2	9.0.0.2.x
h+h / vcdapilibapi_activex_control	9.0.0.57	9.0.0.57.x

http://osvdb.org/38099
http://www.securityfocus.com/bid/24087
https://www.exploit-db.com/exploits/3967

Vulnerability Database

CVE-2007-2853