CVSS: 9.8EPSS: 5%CPEs: 2EXPL: 1CVE-2008-0634 – Sejoong Namo ActiveSquare 6 - 'NamoInstaller.dll' ActiveX Buffer Overflow
https://notcve.org/view.php?id=CVE-2008-0634
06 Feb 2008 — Buffer overflow in the NamoInstaller.NamoInstall.1 ActiveX control in NamoInstaller.dll 3.0.0.1, as used in Sejoong Namo ActiveSquare6, allows remote attackers to execute arbitrary code via a long argument to the Install method, a different vulnerability than CVE-2008-0551. Desbordamiento de búfer en el control ActiveX NamoInstaller.NamoInstall.1 en NamoInstaller.dll 3.0.0.1, del modo que se usa en Sejoong Namo ActiveSquare6. Permite a atacantes remotos ejecutar código de su elección a través de un argument... • https://www.exploit-db.com/exploits/5045 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 46%CPEs: 2EXPL: 2CVE-2008-0551 – Sejoong Namo ActiveSquare 6 - 'NamoInstaller.dll' install Method
https://notcve.org/view.php?id=CVE-2008-0551
01 Feb 2008 — The NamoInstaller.NamoInstall.1 ActiveX control in NamoInstaller.dll 3.0.0.1 and earlier in Namo Web Editor in Sejoong Namo ActiveSquare 6 allows remote attackers to execute arbitrary code via a URL in the argument to the Install method. NOTE: some of these details are obtained from third party information. El control ActiveX NamoInstaller.NamoInstall.1 de NamoInstaller.dll 3.0.0.1 y anteriores en Namo Web Editor en Sejoong Namo ActiveSquare 6 permite a atacantes remotos ejecutar código de su elección a tra... • https://www.exploit-db.com/exploits/4986 • CWE-94: Improper Control of Generation of Code ('Code Injection') •