CVE-2007-1684

The Run function in SolidWorks sldimdownload ActiveX control in sldimdownload.dll before 16.0.0.6 allows remote attackers to execute arbitrary commands via the (1) installerpath and (2) applicationarguments arguments.

🔗 References (14)

• cret@certhttp://osvdb.org/34320
• cret@certhttp://secunia.com/advisories/24762
• cret@certhttp://www.kb.cert.org/vuls/id/556801
• cret@certhttp://www.securityfocus.com/bid/23290
• cret@certhttp://www.securitytracker.com/id?1017855
• cret@certhttp://www.vupen.com/english/advisories/2007/1216
• cret@certhttps://exchange.xforce.ibmcloud.com/vulnerabilities/33428
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/34320
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/24762
• af854a3a-2127-422b-91ae-364da2661108http://www.kb.cert.org/vuls/id/556801
• af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/23290
• af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1017855
• af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2007/1216
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/33428