Computer Security

Akamai Download Manager ActiveX buffer overflow
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Akamai Download Manager ActiveX buffer overflow
Published:17.04.2007
Source:BUGTRAQ
SecurityVulns ID:7592
Type:client
Level:5/10
Description:Buffer overflow in MANAGER.DLMCtrl.1 element.
Affected:AKAMAI : Akamai Download Manager 2.2
CVE:CVE-2007-1892 (Stack-based buffer overflow in Akamai Technologies Download Manager ActiveX Control (DownloadManagerV2.ocx) before 2.2.1.0 allows remote attackers to execute arbitrary code via unspecified vectors, a different issue than CVE-2007-1891.)
 CVE-2007-1891 (Stack-based buffer overflow in the GetPrivateProfileSectionW function in Akamai Technologies Download Manager ActiveX Control (DownloadManagerV2.ocx) after 2.0.4.4 but before 2.2.1.0 allows remote attackers to execute arbitrary code, related to misinterpretation of the nSize parameter as a byte count instead of a wide character count.)
Original documentdocumentAKAMAI, Akamai Technologies Security Advisory 2007-0001 (17.04.2007)
 documentIDEFENSE, iDefense Security Advisory 04.16.07: Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability (17.04.2007)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru