CVE-2007-5660

2007-11-0216:46:00

mitre

web.nvd.nist.gov

cve-2007-5660

update service

activex control

remote code execution

buffer overflow

macrovision flexnet connect

installshield 2008

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.963

Percentile

99.6%

JSON

Unspecified vulnerability in the Update Service ActiveX control in isusweb.dll before 6.0.100.65101 in MacroVision FLEXnet Connect and InstallShield 2008 allows remote attackers to execute arbitrary code via an unspecified “unsafe method,” possibly involving a buffer overflow.

Affected configurations

Nvd

Node

macrovisionflexnet_connect

macrovisioninstallshield_2008

macrovisionupdate_serviceMatch3.0

macrovisionupdate_serviceMatch4.0

macrovisionupdate_serviceMatch5.0

macrovisionupdate_serviceMatch5.1.100_47363

macrovisionupdate_serviceMatch6.0.100_60146

VendorProductVersionCPE
macrovisionflexnet_connect*cpe:2.3:a:macrovision:flexnet_connect:*:*:*:*:*:*:*:*
macrovisioninstallshield_2008*cpe:2.3:a:macrovision:installshield_2008:*:*:*:*:*:*:*:*
macrovisionupdate_service3.0cpe:2.3:a:macrovision:update_service:3.0:*:*:*:*:*:*:*
macrovisionupdate_service4.0cpe:2.3:a:macrovision:update_service:4.0:*:*:*:*:*:*:*
macrovisionupdate_service5.0cpe:2.3:a:macrovision:update_service:5.0:*:*:*:*:*:*:*
macrovisionupdate_service5.1.100_47363cpe:2.3:a:macrovision:update_service:5.1.100_47363:*:*:*:*:*:*:*
macrovisionupdate_service6.0.100_60146cpe:2.3:a:macrovision:update_service:6.0.100_60146:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
macrovision	flexnet_connect	*	cpe:2.3:a:macrovision:flexnet_connect::::::::
macrovision	installshield_2008	*	cpe:2.3:a:macrovision:installshield_2008::::::::
macrovision	update_service	3.0	cpe:2.3:a:macrovision:update_service:3.0:::::::*
macrovision	update_service	4.0	cpe:2.3:a:macrovision:update_service:4.0:::::::*
macrovision	update_service	5.0	cpe:2.3:a:macrovision:update_service:5.0:::::::*
macrovision	update_service	5.1.100_47363	cpe:2.3:a:macrovision:update_service:5.1.100_47363:::::::*
macrovision	update_service	6.0.100_60146	cpe:2.3:a:macrovision:update_service:6.0.100_60146:::::::*