Published: 03/08/2007 Updated: 15/10/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Heap-based buffer overflow in the BlueSkychat (BlueSkyCat) ActiveX control (V2.V2Ctrl.1) in v2.ocx 8.1.2.0 and previous versions allows remote malicious users to execute arbitrary code via a long string in the second argument to the ConnecttoServer method.

Vulnerable Product	Search on Vulmon	Subscribe to Product
bluesky blueskychat

source: wwwsecurityfocuscom/bid/25149/info BlueSkyChat ActiveX control is prone to a buffer-overflow vulnerability because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the applicatio ...

NVD-CWE-Other http://lists.grok.org.uk/pipermail/full-disclosure/2007-July/064995.html http://codeaudit.blogspot.com/http://www.vulnhunt.com/advisories/CAL-20070730-1_BlueSkyCat_v2.ocx_ActiveX_remote_heap_overflow_vulnerability_en.txt http://www.securityfocus.com/bid/25149 http://securityreason.com/securityalert/2959 https://exchange.xforce.ibmcloud.com/vulnerabilities/35699 http://www.securityfocus.com/archive/1/475150/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/30441/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-4145

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect