CVE-2007-0319

Name of the Vulnerable Software and Affected Versions: Motive Service Activation Manager versions 5.1 and earlier Motive Self Service Manager versions 5.1 and earlier

Description: The issue is related to multiple stack-based buffer overflows in the Motive ActiveEmailTest.EmailData ActiveX control. This control is part of the ActiveUtils.dll in Motive Service Activation Manager and Self Service Manager. The overflows allow remote attackers to execute arbitrary code via unspecified vectors.

Recommendations: For Motive Service Activation Manager versions 5.1 and earlier, update to a version that fixes the buffer overflow issue in the ActiveUtils.dll. For Motive Self Service Manager versions 5.1 and earlier, update to a version that fixes the buffer overflow issue in the ActiveUtils.dll. As a temporary workaround, consider disabling the ActiveX control ActiveEmailTest.EmailData until a patch is available.