Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-6654

Published: 04/01/2008 Updated: 29/09/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Update Service

Vulnerability Summary

Buffer overflow in a certain ActiveX control in Macrovision InstallShield Update Service Web Agent 5.1.100.47363 allows remote malicious users to execute arbitrary code via a long string in the ProductCode argument (second argument) to the DownloadAndExecute method, a different vulnerability than CVE-2007-0321, CVE-2007-2419, and CVE-2007-5660.

Vulnerable Product Search on Vulmon Subscribe to Product

macrovision update service 5.1.100_47363

Exploits

Exploit DB: Macrovision Installshield - 'isusweb.dll' Overwrite (SEH)
<!-- written by eb Macrovision Installshield isuswebdll SEH Overwrite Exploit Tested on Windows XP SP2(fully patched) English, IE6, isuswebdll version 5110047363 Thanks to hdm and the Metasploit crew --> <html> <head> <title>Macrovision Installshield isuswebdll SEH Overwrite Exploit</title> <scrip ...

References

CWE-119http://lists.grok.org.uk/pipermail/full-disclosure/2007-December/059288.htmlhttp://osvdb.org/39980https://exchange.xforce.ibmcloud.com/vulnerabilities/39204https://www.exploit-db.com/exploits/4819https://nvd.nist.govhttps://www.exploit-db.com/exploits/4819/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook