The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll before 1.2.8.0 and possibly acpir.dll before 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), does not properly validate digital signatures of downloaded software, which makes it easier for remote attackers to spoof a download.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2007-08-15T19:00:00

Updated: 2024-08-07T13:33:27.473Z

Reserved: 2007-04-25T00:00:00

Link: CVE-2007-2240

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-08-15T19:17:00.000

Modified: 2024-11-21T00:30:16.537

Link: CVE-2007-2240

cve-icon Redhat

No data.