Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4802

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4802
Last Modified 15 Nov 2008 01:58:35
Published 11 Sep 2007 02:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4802

Summary

Multiple heap-based buffer overflows in GlobalLink 2.7.0.8 allow remote attackers to execute arbitrary code via (1) a long eighth argument to the SetInfo method in a certain ActiveX control in glItemCom.dll or (2) a long second argument to the SetClientInfo method in a certain ActiveX control in glitemflat.dll.

Vulnerable Systems

Application

  • Ourgame.com Globallink 2.7.0.8


References

XF - globallink-glitemflat-bo(36501)

XF - globallink-glitemcom-bo(36470)

BID - 25586

BID - 25565

MILW0RM - 4372

MILW0RM - 4366

OSVDB - 45887

OSVDB - 45886


Last Updated: 27 May 2016 10:45:58