Unrated severityNVD Advisory· Published May 24, 2007· Updated Apr 23, 2026
CVE-2007-2856
CVE-2007-2856
Description
Buffer overflow in the Dart Communications PowerTCP ZIP Compression ActiveX control in DartZip.dll 1.8.5.3, when Internet Explorer 6 is used, allows user-assisted remote attackers to execute arbitrary code via a long first argument to the QuickZip function, a related issue to CVE-2007-2855.
Affected products
1- cpe:2.3:a:dart:powertcp_zip_compression:1.8.5.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- retrogod.altervista.org/ie_DartZip_bof.htmlnvdExploit
- osvdb.org/38111nvd
- www.securityfocus.com/archive/1/469503/100/0/threadednvd
- www.securityfocus.com/archive/1/469592/100/0/threadednvd
- www.securityfocus.com/bid/24142nvd
- www.securityfocus.com/bid/24163nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/34494nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/34520nvd
News mentions
0No linked articles in our index yet.