CVE-2007-5217

Sažetak

Stack-based buffer overflow in the ADM4 ActiveX control in adm4.dll in Altnet Download Manager 4.0.0.6, as used in (1) Kazaa 3.2.7 and (2) Grokster, allows remote attackers to execute arbitrary code via a long argument to the Install method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://osvdb.org/37785
http://osvdb.org/38435
http://secunia.com/advisories/26970
http://secunia.com/advisories/26972
http://www.securityfocus.com/bid/25903
http://www.vupen.com/english/advisories/2007/3335
http://www.vupen.com/english/advisories/2007/3336
https://exchange.xforce.ibmcloud.com/vulnerabilities/36929

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

29-07-2017 - 01:33

Objavljeno

05-10-2007 - 00:17