PT-2008-1617 · Tivo+1 · Tivo+1

Elazar

Published

2008-01-04

Updated

2017-09-29

CVE-2007-6654

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in a certain ActiveX control in Macrovision InstallShield Update Service Web Agent 5.1.100.47363 allows remote attackers to execute arbitrary code via a long string in the ProductCode argument (second argument) to the DownloadAndExecute method, a different vulnerability than CVE-2007-0321, CVE-2007-2419, and CVE-2007-5660.

Exploit

Fix

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2007-6654

Affected Products

Tivo

Update Service

PT-2008-1617 · Tivo+1 · Tivo+1

CVE-2007-6654

Weakness Enumeration

Related Identifiers

Affected Products

References · 6