Unrated severityNVD Advisory· Published Apr 18, 2007· Updated Apr 23, 2026

CVE-2007-1891

Description

Stack-based buffer overflow in the GetPrivateProfileSectionW function in Akamai Technologies Download Manager ActiveX Control (DownloadManagerV2.ocx) after 2.0.4.4 but before 2.2.1.0 allows remote attackers to execute arbitrary code, related to misinterpretation of the nSize parameter as a byte count instead of a wide character count.

Affected products

Akamai Technologies/Download Manager
cpe:2.3:a:akamai_technologies:download_manager:2.2.0.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

labs.idefense.com/intelligence/vulnerabilities/display.phpnvdPatchVendor Advisory
www.kb.cert.org/vuls/id/120241nvdUS Government Resource
secunia.com/advisories/24900nvd
www.osvdb.org/34323nvd
www.securityfocus.com/archive/1/465908/100/0/threadednvd
www.securityfocus.com/bid/23522nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2007/1415nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.016
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000