Vulnerability Details : CVE-2006-3893
Multiple buffer overflows in the ActiveX controls in Newtone ImageKit 5 before Fix 30 and 6 before Fix 40, as used in CASIO Photo Loader software before 3.01 and possibly other software, allow remote attackers to execute arbitrary code via a crafted HTML document.
Vulnerability category: Execute code
Products affected by CVE-2006-3893
- cpe:2.3:a:casio:photo_loader:3.00:*:*:*:*:*:*:*
- cpe:2.3:a:newtone:imagekit:5_fix_29:*:*:*:*:*:*:*
- cpe:2.3:a:newtone:imagekit:6_fix_40:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-3893
7.09%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 94 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-3893
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2006-3893
Jump to