Unrated severityNVD Advisory· Published Oct 6, 2007· Updated Apr 23, 2026
CVE-2007-5257
CVE-2007-5257
Description
Stack-based buffer overflow in the EDraw.OfficeViewer ActiveX control in officeviewer.ocx in EDraw Office Viewer Component 5.3.220.1 and earlier allows remote attackers to execute arbitrary code via long strings in the first and second arguments to the FtpDownloadFile method, a different vector than CVE-2007-4821 and CVE-2007-3169.
Affected products
1- cpe:2.3:a:edraw:office_viewer_component:*:*:*:*:*:*:*:*Range: <=5.3.220.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- shinnai.altervista.org/exploits/txt/TXT_O5FvsIzILBHQr7QbK2kD.htmlnvdExploit
- www.securityfocus.com/bid/25892nvdExploit
- secunia.com/advisories/27017nvdVendor Advisory
- osvdb.org/37724nvd
- www.vupen.com/english/advisories/2007/3329nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36879nvd
- www.exploit-db.com/exploits/4474nvd
News mentions
0No linked articles in our index yet.