CVE-2007-5436

Sažetak

Buffer overflow in a certain ActiveX control in ScanObjectBrowser.DLL in G DATA Antivirus 2007 might allow remote attackers to execute arbitrary code via unspecified parameters to the SelectPath function. NOTE: this issue might not cross privilege boundaries in most environments, since it is not marked as safe for scripting.

Reference

http://osvdb.org/42476
http://securityreason.com/securityalert/3219
http://www.eleytt.com/advisories/eleytt_GDATA2007_1.pdf
http://www.securityfocus.com/archive/1/482021/100/0/threaded
http://www.securityfocus.com/bid/26008

CVSS

Base:	7.6
Impact:	10.0
Exploitability:	4.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:H/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

15-10-2018 - 21:44

Objavljeno

13-10-2007 - 01:17