|
|
|||
| Rule General Information |
|---|
| Release Date: | 2017-06-29 | |
| Rule Name: | WEB-ACTIVEX Macrovision Installshield Update Service Isusweb.dll Remote Buffer Overflow Vulnerability (CVE-2007-6654) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Buffer overflow in a certain ActiveX control in Macrovision InstallShield Update Service Web Agent 5.1.100.47363 allows remote attackers to execute arbitrary code via a long string in the ProductCode argument (second argument) to the DownloadAndExecute method. | |
| Impact: | A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks include arbitrary code execution and denial of service. | |
| Affected OS: | Windows | |
| Reference: | http://lists.grok.org.uk/pipermail/full-disclosure/2007-December/059288.html http://www.milw0rm.com/exploits/4819 http://xforce.iss.net/xforce/xfdb/39204 |
|
| Solutions |
|---|
| The vendor has updated advisory on its official website. Please check it for more information. |