Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2233

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2233
Last Modified 07 Mar 2011 09:35:35
Published 05 May 2006 03:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2233

Summary

Buffer overflow in BankTown Client Control (aka BtCxCtl20Com) 1.4.2.51817, and possibly 1.5.2.50209, allows remote attackers to execute arbitrary code via a long string in the first argument to SetBannerUrl. NOTE: portions of these details are obtained from third party information.

Vulnerable Systems

Application

  • Banktown Btcxctl20com Activex Control 1.4.2.51817

  • Banktown Btcxctl20com Activex Control 1.5.2.50209


References

XF - banktown-setbannerurl-bo(26214)

VUPEN - ADV-2006-1638

BID - 17815

BUGTRAQ - 20060508 Re: BankTown's ActiveX Buffer Overflow Vulnerability

BUGTRAQ - 20060503 BankTown's ActiveX Buffer Overflow Vulnerability

OSVDB - 25212

SECUNIA - 19942

SREASON - 855


Last Updated: 27 May 2016 10:42:23