CVE-2007-3829

Name: CVE-2007-3829
Creator: NVD / NIST
Published: 2007-07-17T21:30:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 8.18%

Last modified Jun 16, 2026

CVE-2007-3829 is a vulnerability of currently unknown severity. Multiple stack-based buffer overflows in (a) InterActual Player 2.60.12.0717 and (b) Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via a (1) long FailURL attribute in the IAMCE ActiveX Control (IAMCE.dll) or a (2) long URLCode attribute in the IAKey ActiveX Control (IAKey.dll). NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.. EPSS estimates a 8.18% chance of exploitation in the next 30 days.

Description

Multiple stack-based buffer overflows in (a) InterActual Player 2.60.12.0717 and (b) Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via a (1) long FailURL attribute in the IAMCE ActiveX Control (IAMCE.dll) or a (2) long URLCode attribute in the IAKey ActiveX Control (IAKey.dll). NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Metrics

EPSS Probability

8.18%

94.2th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Interactual Technologies	Interactual Player	2.60.12.0717
Roxio	Cineplayer	3.2

References

http://osvdb.org/37717
http://osvdb.org/37718
http://secunia.com/advisories/25718Vendor Advisory
http://secunia.com/advisories/25739Vendor Advisory
http://www.kb.cert.org/vuls/id/470913US Government Resource
http://www.kb.cert.org/vuls/id/916897US Government Resource
http://www.securityfocus.com/bid/24919
https://exchange.xforce.ibmcloud.com/vulnerabilities/35422
https://exchange.xforce.ibmcloud.com/vulnerabilities/35423
http://osvdb.org/37717
http://osvdb.org/37718
http://secunia.com/advisories/25718Vendor Advisory
http://secunia.com/advisories/25739Vendor Advisory
http://www.kb.cert.org/vuls/id/470913US Government Resource
http://www.kb.cert.org/vuls/id/916897US Government Resource
http://www.securityfocus.com/bid/24919
https://exchange.xforce.ibmcloud.com/vulnerabilities/35422
https://exchange.xforce.ibmcloud.com/vulnerabilities/35423

Timeline

Published: Jul 17, 2007
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2007-3829?

How severe is CVE-2007-3829?

Severity scoring for CVE-2007-3829 is pending analysis. The EPSS model estimates a 8.18% probability of exploitation in the next 30 days.

How do I fix CVE-2007-3829?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-3829?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST