Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:137D1DDC13D687887B89103EFD2A1F6D
HistoryDec 07, 2007 - 12:00 a.m.

MacroVision InstallShield Update Service isusweb.dll unsafe method

2007-12-0700:00:00
SAINT Corporation
download.saintcorporation.com
69

EPSS

0.963

Percentile

99.6%

JSON

Added: 12/07/2007
CVE: CVE-2007-5660
BID: 26280
OSVDB: 38347

Background

MacroVision InstallShield is software for creating installers or software packages.

Problem

Several unsafe methods in the Update Service ActiveX control allow command execution when a user loads a specially crafted web page.

Resolution

Apply the patch referenced in Macrovision knowledge base article Q113020.

References

<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=618&gt;

Limitations

Exploit works on MacroVision InstallShield 2008 and requires a user to open the exploit page in Internet Explorer.

Platforms

Windows

Related

metasploit 2
saint 3
exploitdb 2
seebug 1
cve 2
canvas 1
securityvulns 2
checkpoint_advisories 1
nvd 2
prion 2
packetstorm 2
cvelist 2
nessus 1
metasploit
metasploit
Macrovision InstallShield Update Service ActiveX Unsafe Method
2008-10-02 05:23:59
Macrovision InstallShield Update Service Buffer Overflow
2007-12-26 12:17:05
saint
saint
MacroVision InstallShield Update Service isusweb.dll unsafe method
2007-12-07 00:00:00
MacroVision InstallShield Update Service isusweb.dll unsafe method
2007-12-07 00:00:00
MacroVision InstallShield Update Service isusweb.dll unsafe method
2007-12-07 00:00:00
exploitdb
exploitdb
Macrovision Installshield Update Service - Remote Buffer Overflow (Metasploit)
2010-05-09 00:00:00
Macrovision Installshield Update Service - ActiveX Unsafe Method (Metasploit)
2010-09-20 00:00:00
seebug
seebug
Macrovision InstallShield升级服务ActiveX控件不安全方式漏洞
2007-11-02 00:00:00
cve
cve
CVE-2007-5660
2007-11-02 16:46:00
CVE-2007-6654
2008-01-04 11:46:00
canvas
canvas
Immunity Canvas: INSTALLSHIELD
2007-11-02 16:46:00
securityvulns
securityvulns
iDefense Security Advisory 10.31.07: Macrovision InstallShield Update Service ActiveX Unsafe Method Vulnerability
2007-11-02 00:00:00
Macrovision InstallShield ActiveX code execution
2007-12-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Macrovision InstallShield Update Service ActiveX Control Code Execution (CVE-2007-5660)
2008-01-17 00:00:00
nvd
nvd
CVE-2007-5660
2007-11-02 16:46:00
CVE-2007-6654
2008-01-04 11:46:00
prion
prion
Buffer overflow
2007-11-02 16:46:00
Buffer overflow
2008-01-04 11:46:00
packetstorm
packetstorm
Macrovision InstallShield Update Service Buffer Overflow
2009-11-26 00:00:00
Macrovision InstallShield Update Service ActiveX Unsafe Method
2009-11-26 00:00:00
cvelist
cvelist
CVE-2007-5660
2007-11-02 16:00:00
CVE-2007-6654
2008-01-04 11:00:00
nessus
nessus
FLEXnet Connect Update Service ActiveX Control Multiple Code Execution Vulnerabilities
2007-11-01 00:00:00

EPSS

0.963

Percentile

99.6%

JSON
Related for SAINT:137D1DDC13D687887B89103EFD2A1F6D
metasploit2saint3exploitdb2seebug1cve2canvas1securityvulns2checkpoint_advisories1nvd2prion2packetstorm2cvelist2nessus1