Published: 31/07/2008 Updated: 08/08/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in the CoVideoWindow.ocx ActiveX control 5.0.907.1 in Eyeball MessengerSDK, as used in products such as SiOL Komunikator 1.3, allows remote malicious users to execute arbitrary code via a large argument supplied to the BGColor method. NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.

Vulnerable Product	Search on Vulmon	Subscribe to Product
eyeball networks eyeball messenger sdk 5.0.907.1

source: wwwsecurityfocuscom/bid/30424/info The 'CoVideoWindowocx' ActiveX control of Eyeball MessengerSDK is prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input An attacker can exploit this issue to execute arbitrary code in the context of an application using ...

CWE-119 http://packetstormsecurity.org/0807-exploits/siol-overflow.txt http://www.securityfocus.com/bid/30424 https://exchange.xforce.ibmcloud.com/vulnerabilities/44111 https://nvd.nist.gov https://www.exploit-db.com/exploits/32124/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-3430

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect