Vulnerability Details CVE-2007-5660
Unspecified vulnerability in the Update Service ActiveX control in isusweb.dll before 6.0.100.65101 in MacroVision FLEXnet Connect and InstallShield 2008 allows remote attackers to execute arbitrary code via an unspecified "unsafe method," possibly involving a buffer overflow.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.677
EPSS Ranking 98.5%
CVSS Severity
CVSS v2 Score 9.3
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=618
- http://osvdb.org/38347
- http://secunia.com/advisories/27475
- http://support.installshield.com/kb/view.asp?articleid=Q113020
- http://support.installshield.com/kb/view.asp?articleid=Q113602
- http://www.macrovision.com/promolanding/7660.htm
- http://www.securityfocus.com/bid/26280
- http://www.securitytracker.com/id?1018881
- http://www.vupen.com/english/advisories/2007/3670
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38210
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=618
- http://osvdb.org/38347
- http://secunia.com/advisories/27475
- http://support.installshield.com/kb/view.asp?articleid=Q113020
- http://support.installshield.com/kb/view.asp?articleid=Q113602
- http://www.macrovision.com/promolanding/7660.htm
- http://www.securityfocus.com/bid/26280
- http://www.securitytracker.com/id?1018881
- http://www.vupen.com/english/advisories/2007/3670
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38210
Products affected by CVE-2007-5660
-
cpe:2.3:a:macrovision:flexnet_connect:6.0
-
cpe:2.3:a:macrovision:installshield_2008:*
-
cpe:2.3:a:macrovision:update_service:3.0
-
cpe:2.3:a:macrovision:update_service:4.0
-
cpe:2.3:a:macrovision:update_service:5.0
-
cpe:2.3:a:macrovision:update_service:5.1.100_47363
-
cpe:2.3:a:macrovision:update_service:6.0.100_60146