CVE-2007-1682

critical

Description

Multiple stack-based buffer overflows in the FileManager ActiveX control in SAFmgPws.dll in SoftArtisans XFile before 2.4.0 allow remote attackers to execute arbitrary code via unspecified calls to the (1) BuildPath, (2) GetDriveName, (3) DriveExists, or (4) DeleteFile method.

References

http://www.securityfocus.com/bid/30826

http://www.kb.cert.org/vuls/id/914785

http://support.softartisans.com/Support-114.aspx

http://secunia.com/advisories/31615

Details

Source: Mitre, NVD

Published: 2008-08-27

Updated: 2026-04-23

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.29613