Unrated severityNVD Advisory· Published Oct 6, 2007· Updated Jun 16, 2026
CVE-2007-5257
CVE-2007-5257
Description
Stack-based buffer overflow in the EDraw.OfficeViewer ActiveX control in officeviewer.ocx in EDraw Office Viewer Component 5.3.220.1 and earlier allows remote attackers to execute arbitrary code via long strings in the first and second arguments to the FtpDownloadFile method, a different vector than CVE-2007-4821 and CVE-2007-3169.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:edraw:office_viewer_component:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:edraw:office_viewer_component:*:*:*:*:*:*:*:*range: <=5.3.220.1
- (no CPE)range: <=5.3.220.1
- Range: <=5.3.220.1
Patches
Vulnerability mechanics
References
7- shinnai.altervista.org/exploits/txt/TXT_O5FvsIzILBHQr7QbK2kD.htmlnvdExploit
- www.securityfocus.com/bid/25892nvdExploit
- secunia.com/advisories/27017nvdVendor Advisory
- osvdb.org/37724nvd
- www.vupen.com/english/advisories/2007/3329nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36879nvd
- www.exploit-db.com/exploits/4474nvd
News mentions
0No linked articles in our index yet.