CVE-2003-0470

Published: 07/08/2003 Updated: 11/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in the "RuFSI Utility Class" ActiveX control (aka "RuFSI Registry Information Class"), as used for the Symantec Security Check service, allows remote malicious users to execute arbitrary code via a long argument to CompareVersionStrings.

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec security check

source: wwwsecurityfocuscom/bid/8008/info It has been reported that the RuFSI Utility Class is vulnerable to a boundary condition error when invoked with long strings This could potentially lead to the execution of code with the privileges of the user executing the web browser <object classid="clsid:69DEAF94-AF66-11D3-BEC0-00105AA9 ...

NVD-CWE-Other http://lists.grok.org.uk/pipermail/full-disclosure/2003-June/006014.html http://www.kb.cert.org/vuls/id/527228 http://www.securityfocus.com/bid/8008 http://securitytracker.com/id?1007029 http://secunia.com/advisories/9091 http://marc.info/?l=bugtraq&m=105647537823877&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/12423 https://nvd.nist.gov https://www.exploit-db.com/exploits/22816/https://www.kb.cert.org/vuls/id/527228

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-0470

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect