cpe:/a:baofeng:storm:2.8 cpe:/a:baofeng:storm:2.9 CVE-2007-4816 2007-09-11T15:17:00.000-04:00 2017-09-28T21:29:23.830-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-09-12T14:07:00.000-04:00 ALLOWS_OTHER_ACCESS BID 25601 SECUNIA 26749 OSVDB 40491 EXPLOIT-DB 4375 VUPEN ADV-2007-3111 XF baofeng-backimage-titleimage-bo(36543) XF baofeng-isdvdpath-bo(36542) XF baofeng-mpsstormplayer-bo(36540) MISC http://www.milw0rm.com/sploits/09082007-storm.zip Multiple buffer overflows in the BaoFeng2 storm ActiveX control in Mps.dll allow remote attackers to have an unknown impact via a long (1) URL, (2) backImage, or (3) titleImage property value; (4) a long first argument to the advancedOpen method; a long argument to the (5) isDVDPath or (6) rawParse method; or (7) a .smpl file with a long path attribute in an item element in a PlayList.