Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2008-1307

Published: 12/03/2008 Updated: 29/09/2017
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Heap-based buffer overflow in the KUpdateObj2 Class ActiveX control in UpdateOcx2.dll in Beijing KingSoft Antivirus Online Update Module 2007.12.29.29 allows remote malicious users to execute arbitrary code via a long argument to the SetUninstallName method.

Vulnerable Product Search on Vulmon Subscribe to Product

kingsoft antivirus online update module 2007.12.29.29

Exploits

Exploit DB: KingSoft - 'UpdateOcx2.dll SetUninstallName()' Heap Overflow (PoC)
<!-- KingSoft UpdateOcx2dll SetUninstallName() Heap Overflow Exploit Date: 2008-02-29 MSN: void[at]ph4nt0m[dot]org wwwph4nt0morg 文件路径: C:\WINDOWS\system32\KingSoft\KOS\UpdateOcx2dll 文件描述: Kingsoft Antivirus Online Update Module 文件版本: 2007,12,29,29 --> <object ...

References

CWE-119http://www.securityfocus.com/bid/28172http://secunia.com/advisories/29204http://www.vupen.com/english/advisories/2008/0857/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/41088https://www.exploit-db.com/exploits/5225https://nvd.nist.govhttps://www.exploit-db.com/exploits/5225/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camerabypassCVE-2024-3592CVE-2024-37383CVE-2024-24919CVE-2024-27822CVE-2024-36788CVE-2024-36789man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook