CVSS: 10.0EPSS: 3%CPEs: 2EXPL: 0CVE-2010-0990
https://notcve.org/view.php?id=CVE-2010-0990
Stack-based buffer overflow in Creative Software AutoUpdate Engine ActiveX Control 2.0.12.0, as used in Creative Software AutoUpdate 1.40.01, allows remote attackers to execute arbitrary code via vectors related to the BrowseFolder method. Desbordamiento de búfer basado en pila en Creative Software AutoUpdate Engine ActiveX Control v2.0.12.0, como el usado en Creative Software AutoUpdate 1.40.01, permite a atacantes remotos ejecutar código de su elección a través de vectores relativos al método BrowseFolder. • http://secunia.com/advisories/38970 http://secunia.com/secunia_research/2010-52 http://www.securityfocus.com/archive/1/511795/100/0/threaded http://www.securityfocus.com/bid/40768 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •