cbcvebase.
CVE-2007-2419
published 2007-06-06

CVE-2007-2419: Multiple buffer overflows in an ActiveX control (boisweb.dll) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allow remote attackers to…

PriorityP341critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
5.53%
91.8th percentile
Multiple buffer overflows in an ActiveX control (boisweb.dll) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allow remote attackers to execute arbitrary code via the (1) the second parameter to the DownloadAndExecute method and (2) third parameter to the AddFileEx method, a different vulnerability than CVE-2007-0328.

Affected

5 ranges
VendorProductVersion rangeFixed in
macrovisionflexnet_connect
macrovisionupdate_service
macrovisionupdate_service
macrovisionupdate_service
macrovisionupdate_service
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.