CVE-2007-1819 : Stack-based buffer overflow in the SPIDERLib.Loader ActiveX control (Spider90.ocx) 9.1.0.4353 in TestDirector (TD) for M

Stack-based buffer overflow in the SPIDERLib.Loader ActiveX control (Spider90.ocx) 9.1.0.4353 in TestDirector (TD) for Mercury Quality Center 9.0 before Patch 12.1, and 8.2 SP1 before Patch 32, allows remote attackers to execute arbitrary code via a long ProgColor property.

Published 2007-04-02 23:19:00

Updated 2017-07-29 01:31:02

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Exploit prediction scoring system (EPSS) score for CVE-2007-1819

Probability of exploitation activity in the next 30 days: 69.46%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 98 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2007-1819

HP Mercury Quality Center ActiveX Control ProgColor Buffer Overflow

Disclosure Date: 2007-04-04

First seen: 2020-04-26

exploit/windows/browser/hpmqc_progcolor

This module exploits a stack-based buffer overflow in SPIDERLib.Loader ActiveX control (Spider90.ocx) 9.1.0.4353 installed by TestDirector (TD) for Hewlett-Packard Mercury Quality Center 9.0 before Patch 12.1, and 8.2 SP1 before Patch 32. By setting an overly

More information

CVSS scores for CVE-2007-1819

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2007-1819

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2007-1819

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=497
http://www.vupen.com/english/advisories/2007/1185

Vendor Advisory
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00901872
http://webnotes.merc-int.com/patches.nsf/c4d68388a23535dc422567d0004bbae2/7a0f7f0efc7905fdc225729f004cf387?OpenDocument
http://www.kb.cert.org/vuls/id/589097

US Government Resource
http://www.securityfocus.com/bid/23239

HP Mercury Quality Center ActiveX Control Buffer Overflow Vulnerability
http://webnotes.merc-int.com/patches.nsf/c4d68388a23535dc422567d0004bbae2/cf109e434c7765eac22572a4006c6e94?OpenDocument
https://exchange.xforce.ibmcloud.com/vulnerabilities/33353
http://securitytracker.com/id?1017835

Products affected by CVE-2007-1819

HP » Mercury Quality Center » Version: 9.0
cpe:2.3:a:hp:mercury_quality_center:9.0:*:*:*:*:*:*:*
Matching versions
HP » Mercury Quality Center » Version: 8.2 Update SP1
cpe:2.3:a:hp:mercury_quality_center:8.2:sp1:*:*:*:*:*:*
Matching versions