|
|
CVE Reference: CVE-2007-6189 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-6189 |
|
|
Description: A certain ActiveX control in (1) OScan8.ocx and (2) Oscan81.ocx in BitDefender Online Anti-Virus Scanner 8.0 allows remote attackers to execute arbitrary code via a long argument to the InitX method that begins with a "%%" sequence, which is misinterpreted as a Unicode string and decoded twice, leading to improper memory allocation and a heap-based buffer overflow. |
|
|
CVE Status: Candidate |
|
|
References: ST 1018986 SREASON http://securityreason.com/securityalert/3405 SAID Secunia Advisory: SA27717 MISC http://research.eeye.com/html/advisories/published/AD20071120.html MILW0RM http://www.milw0rm.com/exploits/4663 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/483986/100/100/threaded |
|
| Return to the previous page. |
