CVE-2007-1689

Sažetak

Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the (1) Get and (2) Set functions.

Reference

http://osvdb.org/36164
http://secunia.com/advisories/25290
http://www.kb.cert.org/vuls/id/983953
http://www.securityfocus.com/archive/1/468779/100/0/threaded
http://www.securityfocus.com/bid/23936
http://www.securitytracker.com/id?1018073
http://www.symantec.com/avcenter/security/Content/2007.05.16.html
http://www.vupen.com/english/advisories/2007/1843
https://exchange.xforce.ibmcloud.com/vulnerabilities/34328

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

16-10-2018 - 16:40

Objavljeno

16-05-2007 - 20:30