|
|||
Rule General Information |
---|
Release Date: | 2017-06-29 | |
Rule Name: | WEB-ACTIVEX Macrovision Installshield Update Service Isusweb.dll Remote Buffer Overflow Vulnerability (CVE-2007-6654) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Buffer overflow in a certain ActiveX control in Macrovision InstallShield Update Service Web Agent 5.1.100.47363 allows remote attackers to execute arbitrary code via a long string in the ProductCode argument (second argument) to the DownloadAndExecute method. | |
Impact: | A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks include arbitrary code execution and denial of service. | |
Affected OS: | Windows | |
Reference: | http://lists.grok.org.uk/pipermail/full-disclosure/2007-December/059288.html http://www.milw0rm.com/exploits/4819 http://xforce.iss.net/xforce/xfdb/39204 |
|
Solutions |
---|
The vendor has updated advisory on its official website. Please check it for more information. |