CVE-2007-0321
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Buffer overflow in the Update Service Agent ActiveX Control in isusweb.dll for Macrovision FLEXnet Connect (formerly InstallShield Update Service) allows remote attackers to execute arbitrary code via the Download method.
Desbordamiento de búfer en el control ActiveX Update Service Agent en isusweb.dll para Macrovision FLEXnet Connect (antiguamente InstallShield Update Service) permite a atacantes remotos ejecutar código de su elección mediante el método Download.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-01-17 CVE Reserved
- 2007-02-23 CVE Published
- 2023-11-19 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/33532 | Vdb Entry | |
| http://secunia.com/advisories/24270 | Third Party Advisory | |
| http://support.installshield.com/kb/view.asp?articleid=Q113020 | X_refsource_confirm | |
| http://www.kb.cert.org/vuls/id/847993 | Third Party Advisory |
|
| http://www.kb.cert.org/vuls/id/MAPG-6UERNR | X_refsource_confirm |
|
| http://www.vupen.com/english/advisories/2007/0706 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/32678 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Macrovision Search vendor "Macrovision" | Flexnet Connect Search vendor "Macrovision" for product "Flexnet Connect" | * | - |
Affected
| ||||||