PT-2007-1791 · Motive · Activeutils.Dll+3
Published
2007-08-15
·
Updated
2018-10-12
·
CVE-2007-0319
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Motive Service Activation Manager versions 5.1 and earlier
Motive Self Service Manager versions 5.1 and earlier
Description:
The issue is related to multiple stack-based buffer overflows in the Motive ActiveEmailTest.EmailData ActiveX control. This control is part of the ActiveUtils.dll in Motive Service Activation Manager and Self Service Manager. The overflows allow remote attackers to execute arbitrary code via unspecified vectors.
Recommendations:
For Motive Service Activation Manager versions 5.1 and earlier, update to a version that fixes the buffer overflow issue in the ActiveUtils.dll.
For Motive Self Service Manager versions 5.1 and earlier, update to a version that fixes the buffer overflow issue in the ActiveUtils.dll.
As a temporary workaround, consider disabling the ActiveX control
ActiveEmailTest.EmailData until a patch is available.Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Activeemailtest.Emaildata
Activeutils.Dll
Motive Self Service Manager
Motive Service Activation Manager